![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 14.000000000000002%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 59%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Hi @Somiya Thanks for reaching out. From the description I believe the actual flow is client -> App Gateway -> APIM -> Backend please correct me if I am wrong here.
in order to limit the request to the API's you can implement Rate limit and quotas policies for more information please refer: https://learn.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policies
Our data plane security model provides other methods to protect the downstream traffic to APIM and you can use any of them to enforce more restriction, below is a diagram that lists the all the methods we provide:
you can implement any of the above methods in conjunction with the subscription Key to improve the security and enforce more restriction's
https://learn.microsoft.com/en-us/azure/api-management/api-management-sample-send-request#making-the-validation-request
https://learn.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policies#SetUsageQuota
Kindly let me know incase of further queries, I would you happy to assist you.
Please 'Accept as answer' and ‘Upvote’ if it helped so that it can help others in the community looking for help on similar topics.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 54%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESI%3C/text%3E%3C/svg%3E)