![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 19%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJE%3C/text%3E%3C/svg%3E)
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,447 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 10%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Jhon Elmer Bustamante Botero Thanks for posting your question in Microsoft Q&A. App registration is used to represent a client application and in case of multiple users, you can simply set up authentication and authorization with OAuth flows to an Identity Provider (for example, Azure AD). (No need for multiple app registration). The users need to obtain an access token from Identity Provider using OAuth flow and call APIM with the token in Authorization header. In Azure APIM, you can validate the token using validate-jwt policy.
Here are some docs that can help you with this:
I hope this helps and let me know if you have any questions.