Connect Akto with Azure API Management
Last updated
Was this helpful?
Last updated
Was this helpful?
Azure API Management is Microsoft's fully managed service for securing, publishing, and analyzing APIs in the Azure cloud. Integrating Azure API Management with Akto enables automatic discovery and security testing of all APIs running in your Azure environment, providing seamless security coverage across your cloud infrastructure.
To connect Akto with Azure API Management, please follow these steps -
Before configuring the Azure API Management (APIM) Traffic Connector, you need to deploy the Akto Data-Ingestion Service. Ensure that the service is running and accessible via a publicly available URL.
SSH into the instance where you want to deploy the data-ingestion service and run these commands:
DATABASE_ABSTRACTOR_SERVICE_TOKEN
Log in to the Akto Dashboard.
Navigate to the Quick Start tab in the left panel.
Select Hybrid SaaS Connector and copy the token from the Runtime Service Command section.
docker-mini-runtime.env
FileOpen the docker-mini-runtime.env
file and replace token
with the DATABASE_ABSTRACTOR_SERVICE_TOKEN
you retrieved earlier.
Run the following command to start the data-ingestion service:
Ensure the instance is accessible from the network where your Azure APIM is configured. Note the instance's IP address, as it will be required by the Azure APIM connector to send traffic data.
Go to the Azure Portal and navigate to "API Management Services."
Click on the Create button.
Fill in the required details:
Subscription: Select your Azure subscription.
Resource Group: Choose an existing resource group or create a new one.
Instance Details:
Region: Select the region for your API Management service.
Resource Name: Provide a unique name for the service.
Organization Name: Enter your organization’s name.
Administrator Email: Provide an administrator email.
Pricing Tier: Select the appropriate pricing tier.
Units: Define the number of units as per your requirement.
Click Review + Create and then Create to deploy the API Management service.
Once the APIM service is created, navigate to the service in the Azure Portal.
Go to the APIs section.
Either import an existing API or create a new API.
Select the API where you want to add the policy for the traffic connector.
Navigate to the Inbound Policies section of the selected API operation.
Click on the Edit Policy button.
Paste the following policy configuration:
Add the regex patterns for the paths you want to include in the regexList
variable value in the inbound policy, ensuring that the entire regex is properly escaped. Separate multiple patterns using ;
(e.g., "api\/v1\/.*;\/api\/getUsers.*"
).
If you leave the regexList
variable value empty, all APIs will be processed.
Replace YOUR_AKTO_INGESTION_SERVICE_URL
with the URL of your Akto Data-Ingestion Service (Step 1.5).
Click Save to apply the policy.
Send test requests to the configured API endpoint.
Check the Akto Data-Ingestion Service logs to verify that the traffic data is being ingested correctly.
There are multiple ways to request support from Akto. We are 24X7 available on the following:
In-app intercom
support. Message us with your query on intercom in Akto dashboard and someone will reply.
Join our discord channel for community support.
Contact help@akto.io
for email support.
Contact us here.