secure api manager access via Vnet peering

RagulanS 1 Reputation point
2020-01-16T08:23:52.017+00:00

We established vnet peering with to different tenant to access our api manger. What are the ways we can secure the API manager and only allow connection access via vnet-peering. I get to know in "basic tier" we can't use api-manager virtual network.

Our end goal here is to secure api-manager access from outside world and only enable the access withing the vnets.

Azure Web Apps
Azure Web Apps
A feature of Azure App Service used to create and deploy scalable, mission-critical web apps.
4,322 questions
Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
397 questions
No comments
{count} votes

1 answer

Sort by: Most helpful
  1. msrini-MSFT 5,676 Reputation points Microsoft Employee
    2020-01-17T06:36:33.337+00:00

    @RagulanS ,

    You can restrict API access from Internet but you need a Private endpoint to access the API Management via VNET peering which is not possible in Basic Tier.

    I would recommend you to upgrade the tier to Premium where you get private API endpoint which is not accessible from Internet and only via Private IPs.

    To restrict access from Internet, use the policy which is mentioned over here.

    No comments