Deploying A2A API in API Management with Azure Bicep https://cloudadministrator.net/2026/02/05/deploying-a2a-api-in-api-management-with-azure-bicep/ #Azure #AzureBicep #A2A #APIM #AzureAPIM #IaC #DevOps

Diagnose Azure OpenAI Throttling with Azure Quick Review. #azqr #Azure #OpenAI #throttling #apim https://carlos.mendible.com/2026/02/03/diagnose-azure-openai-throttling-with-azqr/

Last week I have blogged: Deploying Azure APIM MCP Servers with Bicep https://cloudadministrator.net/2025/09/23/deploying-azure-apim-mcp-servers-with-bicep/ #Azure #AzureBicep #APIM #IaC #DevOps #MCP

Deploying Azure APIM MCP Servers with Bicep https://cloudadministrator.net/2025/09/23/deploying-azure-apim-mcp-servers-with-bicep/ #Azure #AzureBicep #DevOps #IaC #APIM #MCP

I reviewed the APIM Standard v2 limitations for custom domains: https://learn.microsoft.com/en-us/azure/api-management/configure-custom-domain?tabs=custom#limitation-for-custom-domain-name-in-standard-v2-tier It references my work on custom domains and private endpoints with Application Gateway: https://github.com/Azure/agw-pep-custom-names Pretty cool! #Azure #APIM #ApplicationGateway #DNS

This is an interesting one! Expose REST APIs as MCP servers with Azure API Management and API Center (now in preview)! #msbuild #apim https://techcommunity.microsoft.com/blog/integrationsonazureblog/expose-rest-apis-as-mcp-servers-with-azure-api-management-and-api-center-now-in-/4415013?WT.mc_id=AZ-MVP-5004796

Quotas and rate limits play a crucial role in managing resource consumption. Quotas regulate consumption over time, while rate limits curb intense request spikes. Learn how we applied these mechanisms to ensure fair usage across all tiers! #APIM #RateLimiting

Want to know how we built a multi-tenant GenAI gateway with Azure API Management? It all started with a challenging problem around load-balancing requests and enforcing quotas. Stick around to discover the solutions we implemented for a smooth SaaS experience! #GenAI #Azure #APIM

Implementing AI Gateway capabilities in API Management

Today, let's explore the Generative AI Gateway capabilities in API Management, crucial for securing and monitoring OpenAI endpoints in applications heading toward production.

#AI #APIManagement #OpenAI #AIcapabilities #mvpbuzz #apim #azureopenai #Technology #Innovation

https://luke.geek.nz/azure/implementing-ai-gateway-in-api-management/

Demystifying Azure APIM Monitoring for Azure Open AI Endpoints by Wael Kdouh.

#azure #cloud #apis #openai #azureopenai #apim
https://waelkdouh.medium.com/demystifying-azure-apim-monitoring-for-azure-open-ai-endpoints-c3bfab98c428

Merging two Azure API Management services together
https://www.jannemattila.com/azure/2024/06/03/merging-two-apims-together.html
#azure #apim

A bit of a documentation re-iteration, using the managed identity of #APIM to do authenticated calls to backend services.

This post makes it a bit easier to find, for me at least, on how to do it.

https://jan-v.nl/post/2024/authenticate-with-apim-managed-identity-to-your-backend-services/

Has anyone had problems since this week with New-AzApiManagementApiRevision?
#Azure #PowerShell #APIM

Something like this?
https://github.com/Azure/azure-powershell/issues/24144

Azure API Management Developer Portal content migrations
https://www.jannemattila.com/azure/2023/09/04/apim-developer-portal-content.html
#azure #development #apim #apimanagement #developerportal

𝐃𝐞𝐟𝐞𝐧𝐝𝐞𝐫 𝐟𝐨𝐫 𝐀𝐏𝐈𝐬 𝐁𝐞𝐭𝐭𝐞𝐫 𝐓𝐨𝐠𝐞𝐭𝐡𝐞𝐫 𝐰𝐢𝐭𝐡 𝐀𝐳𝐮𝐫𝐞 𝐖𝐞𝐛 𝐀𝐩𝐩𝐥𝐢𝐜𝐚𝐭𝐢𝐨𝐧 𝐅𝐢𝐫𝐞𝐰𝐚𝐥𝐥 𝐚𝐧𝐝 𝐀𝐳𝐮𝐫𝐞 𝐀𝐏𝐈 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭

The synergy of Microsoft Defender for APIs, Azure WAF, and Azure API Management forms a strong defense against API threats.

https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/defender-for-apis-better-together-with-azure-web-application/ba-p/3907308

✔️The WAF on Application Gateway checks the request against WAF rules. If the request is valid, then it will proceed.

✔️Application Gateway directs the request to APIM.

✔️APIM accepts and properly maps the requests.

✔️Defender for APIs inspects API endpoints and gives insight on whether the API is properly authenticated, inactive, and externally facing.

✔️Defender for APIs monitors the traffic going to and from APIM to classify sensitive data and alert on exploits and anomalies.

𝐃𝐞𝐟𝐞𝐧𝐝𝐞𝐫 𝐟𝐨𝐫 𝐀𝐏𝐈𝐬

Defender for APIs provides visibility into crucial APIs. It facilitates a deep dive into your API security, allowing prioritization of vulnerabilities and quick detection of active threats. Key features include a consolidated view of managed APIs with security insights on external, inactive, or unauthenticated APIs, data classifications of sensitive data in API interactions, and machine learning-driven detection of API threats in alignment with the OWASP API Top 10.

𝐀𝐳𝐮𝐫𝐞 𝐀𝐏𝐈 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭

Azure API Management caters to the entire API lifecycle. APIM includes an API gateway, management platform, and developer portal. The gateway manages requests, ensures authentication, transforms requests and responses, caches responses, enforces usage caps, emits logs, and more.

𝐀𝐳𝐮𝐫𝐞 𝐖𝐞𝐛 𝐀𝐩𝐩𝐥𝐢𝐜𝐚𝐭𝐢𝐨𝐧 𝐅𝐢𝐫𝐞𝐰𝐚𝐥𝐥

Azure WAF provides a centralized defense against web and API vulnerabilities like SQL injections and cross-site scripting attacks. With its rapid virtual patching, Azure WAF offers quick threat mitigation without needing to individually secure every web application.

#microsoft #azure #azurewaf #waf #api #defenderapi #sqlinjection #apim #apimanagement #defenderforapi #defenderforcloud #defender #cloud #cloudsecurity #cloudnative #soc #owasp #apithreats #cybersecurity

𝗛𝗼𝘄 𝘁𝗼 𝘀𝗲𝗰𝘂𝗿𝗲 𝗮 𝗙𝘂𝗻𝗰𝘁𝗶𝗼𝗻 𝗔𝗽𝗽?

𝚂̲𝚎̲𝚌̲𝚞̲𝚛̲𝚎̲ ̲𝚘̲𝚙̲𝚎̲𝚛̲𝚊̲𝚝̲𝚒̲𝚘̲𝚗̲

➡️Defender for Cloud for assessment of potential configuration-related security vulnerabilities

➡️Log and monitor: diagnostic settings to configure streaming export of platform logs and metrics

➡️Require HTTPS

➡️Securing keys with Azure key Vault

➡️Enable App Service Authentication/Authorization

➡️Use Azure API Management (APIM) to authenticate requests

➡️Run your function app with the lowest possible permissions

➡️Store data encrypted

𝚂̲𝚎̲𝚌̲𝚞̲𝚛̲𝚎̲ ̲𝚍̲𝚎̲𝚙̲𝚕̲𝚘̲𝚢̲𝚖̲𝚎̲𝚗̲𝚝̲

➡️Disable FTP

➡️Secure the scm endpoint

𝙽̲𝚎̲𝚝̲𝚠̲𝚘̲𝚛̲𝚔̲ ̲𝚜̲𝚎̲𝚌̲𝚞̲𝚛̲𝚒̲𝚝̲𝚢̲

➡️Set access restrictions

➡️Secure the storage account

➡️Private site access with Azure Private Endpoint

➡️Deploy your function app in isolation configuring a Web Application Firewall (WAF) for App Service Environment.

More details: https://learn.microsoft.com/en-us/azure/azure-functions/security-concepts?tabs=v4

#security #azure #cloud #data #management #streaming #functionapp #serverless #waf #appservice #privateendpoint #networksecurity #securedeployment #apim #ftp #keyvault #key #vulnerability #assessment #misconfiguration #encryption #storage #storageaccount #defender #defenderforcloud #cnapp #cspm #cwpp #microsoft #microsoftsecurity #cloudsecurity #cloudnative #siem #monitoring #soc

Usando o Azure API Management? Então vc precisa conhecer um novo recurso para proteger suas APIs e que a Microsoft anunciou esta semana: o Microsoft Defender for APIs.

#azure #apim #api #apimanagement #cloudcomputing #devops #devsecops #microsoft

https://t.co/Rgje5poadG

Had a lot of fun doing my talk on #Azure #APIM at the #nultien office in Belgrade yesterday. For those interested, find all the resources and my slides over here: http://rickvdbos.ch/APIMtalk