secure api manager access via Vnet peering

RagulanS 1 Reputation point
2020-01-16T08:23:52.017+00:00

We established vnet peering with to different tenant to access our api manger. What are the ways we can secure the API manager and only allow connection access via vnet-peering. I get to know in "basic tier" we can't use api-manager virtual network.

Our end goal here is to secure api-manager access from outside world and only enable the access withing the vnets.

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
529 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,328 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. msrini-MSFT 9,271 Reputation points Microsoft Employee
    2020-01-17T06:36:33.337+00:00

    @RagulanS ,

    You can restrict API access from Internet but you need a Private endpoint to access the API Management via VNET peering which is not possible in Basic Tier.

    I would recommend you to upgrade the tier to Premium where you get private API endpoint which is not accessible from Internet and only via Private IPs.

    To restrict access from Internet, use the policy which is mentioned over here.

    0 comments No comments