Skip to main content
Identity Management provides all the necessary tools to manage credentials of clients that will access API Proxies in the Apinizer platform, create access control lists (ACL), perform contract and protocol management, manage organizations and IP groups, configure identity providers, and generate access reports.
Credential access permission alone is not sufficient for API proxy access. For the settings in the credential and access permission to be valid, one of the authentication policies must be added on the API Proxy and the Security Manager option must be selected as the authentication method in this policy.

Module Core Components

The Identity Management module provides centralized management of credentials and access control lists of clients that will access API Proxies. With this module:
  • Client credentials and access permissions are managed
  • Contract and protocol management is performed
  • Organizations and IP groups are created
  • Identity providers are configured
  • Access reports are generated

Module Components

The Identity Management module is managed through the following pages:

Credentials

Creating, managing credentials of clients that will access API Proxies and access control settings.

Contracts/Protocols

Contract/protocol management with clients, API Proxy and credential association.

API Proxy ACL

Managing access permissions of credentials of clients that will access API Proxies and API Proxy-based access control.

API Proxy Group ACL

Managing access permissions of credentials of clients that will access API Proxy Groups and details of these permissions.

Organizations

Keeping organization information that credentials are linked to, searching and grouping credentials.

IP Groups

Defining IP groups to manage a group of IP addresses together. Used in Allowed IP List and Blocked IP List policies.

Credential Roles

Authorization and role definition after identity verification in API Proxies.

ACL Report

Creating and querying access control list reports based on API Proxy or organization/credential.

Rate Limit Control List

Configuring rate limit control for APIs and endpoints, defining identity-based limits, and overuse protection.

Identity Providers

Identity providers specify the user pool to be given to clients. These predefined identity providers are used when creating authentication policies.

API Authentication Provider

Identity provider configuration for user verification via API.

Database Provider

Identity provider configuration for user verification via database.

LDAP Active Directory

Identity provider configuration for user verification via LDAP/Active Directory.