Azure API Management
Unify, govern, and secure your APIs across cloud and on-premises environments with an Azure-native API management solution.
Deliver AI-ready APIs with built-in governance, security, analytics, and Azure scalability.
OVERVIEW
Power AI-driven innovation with unified API management
- Secure your APIs against the Open Worldwide Application Security Project (OWASP) API Security Top 10 and other threats with built-in authentication, authorization, rate limiting, schema validation, private networking, and more. Strengthen and enable governance at scale by federating API management using workspaces. Unify API inventory and monitor API design compliance in Azure API Center. Enhance security with AI-powered threat detection and security posture analysis in Microsoft Defender for Cloud.
- Get a handle on and accelerate AI adoption in your organization with APIs ready to be consumed by AI agents. Easily secure, monitor, and control usage of popular LLMs with token quotas, token tracking, semantic caching, and smart load-balancing.
- Take advantage of a rich set of policies to shape API traffic for your most demanding workloads. Use fine-grained, comprehensive, and customizable logs and metrics to obtain insights, get ahead of issues, and maintain peak performance.
- Reduce friction across the entire API lifecycle by empowering your development teams to work faster and more efficiently with an integrated developer portal, automated documentation, and versioning tools that streamline API workflows. Manage and unify your API inventory to enhance discoverability and governance. Strengthen compliance and ensure high-quality API design with features like linting in Visual Studio Code, API design rules, and real-time reports.
FEATURES
Simplify API security, performance, and governance
Flexible API gateway
Secure and manage APIs with declarative policies for request authentication, validation, routing, throttling, caching, transformation, load balancing, and circuit breaking. Bring any API style, including REST, WebSockets, GraphQL, SOAP, and gRPC.
AI-powered API design and policy authoring
Accelerate API design with GitHub Copilot for Azure Preview for Visual Studio Code by generating high-quality API specifications from prompts or refining existing specifications for quality and compliance. Simplify policy authoring and troubleshooting with Microsoft Copilot in Azure.
Comprehensive AI gateway
Securely and easily expose popular AI models to your intelligent app developers. Govern usage with detailed token quotas and rate limits, closely track token consumption and costs, ensure low and consistent latencies with semantic caching, and implement prompt and content safety safeguards.
Fine-grained monitoring and analytics
Collect comprehensive request logs and gain insights into API usage, latency, and error rates with pre-built dashboards and integration with Azure Monitor and Application Insights.
API compliance, consistency, and unified inventory
Build a unified API inventory, deployment locations, and lifecycle stages with Azure API Center. Enrich your catalog with custom metadata for improved discoverability and governance. Strengthen API quality and compliance with API design rules and reports, and empower developers to build compliant APIs faster using linting in Visual Studio Code.
Out-of-the-box developer portal and API documentation
Enhance developer experience through self-service API discovery, access management, interactive documentation, and a test console — all tailored to your brand and needs.
Seamless connectivity with Azure services
Natively connect with Azure Functions, Logic Apps, App Service, and other Azure services. With a Kubernetes-managed gateway, enable Kubernetes-first API management experience while unifying security, traffic control, and governance across cloud-native and serverless applications.
Automated API operations
Boost business agility and API reliability with versioning controls and automated API deployments. Choose from a range of CI/CD tooling—Azure Resource Manager, Bicep, Azure CLI, Terraform, and client SDKs—in various programming languages to implement repeatable and automated API deployments.
Flexible API management across Hybrid and multi-cloud environments
Extend API management beyond Azure with self-hosted gateways—lightweight, containerized API gateways deployed alongside your APIs, whether on-premises or in other clouds—enabling consistent API visibility and governance across cloud and on-premises environments.
Security
Built-in security and compliance
Microsoft has committed to investing $20 billion in cybersecurity over five years.
We employ more than 8,500 security and threat intelligence experts across 77 countries.
Azure has one of the largest compliance certification portfolios in the industry.
PRICING
Flexible consumption, tier-based pricing to meet your varied API workload needs
- Select Developer for evaluation, experimentation, and development.
- Select Standard to add API management to your workload.
- Select Premium to run enterprise-wide API program.
RELATED PRODUCTS
Azure products work better together
Use Azure API Management with other Azure products and services to build advanced and comprehensive solutions.
Scale with confidence on an enterprise-grade platform with 10+ years of API innovation
Trusted by over 35,000 customers worldwide. Managing nearly 2 million APIs. Processing over 2 trillion requests monthly. Available in over 60 regions.
CUSTOMER STORIES
Customers are innovating with Azure API Management across industries worldwide
RESOURCES
Get started with Azure API Management
Frequently asked questions
- API management is the process of securing, monitoring, and optimizing APIs to ensure they are scalable, reliable, and easy to find and use. It includes capabilities such as authentication, rate limiting, analytics, lifecycle management, and onboarding that enable organizations to govern and reuse APIs efficiently.
- Azure API Management is a fully managed service that helps organizations publish, secure, monitor, and scale APIs across cloud and hybrid environments. It provides capabilities like request authentication, traffic management, developer engagement, and analytics that work seamlessly with many Azure services.
- API Management policies are rules that evaluate or modify API requests and responses at the gateway without changing client apps or back-end services. Policies are used to, for example, enforce security, transform payloads, control traffic, log requests and enable fine-grained API governance through a declarative configuration.
- API Management offers over 50 declarative policies, including rate limiting, quotas, authentication, content validation, caching, transformation, and others. Policies can be applied at varying scopes (such as apply to all APIs or to a single API) and can be dynamically customized and conditionally evaluated using policy expressions.
- API Management performs authentication, authorization, and validation at the gateway, preventing unauthorized or malformed requests from reaching the backend services. It supports a variety of authentication and authorization options, including IP filtering, mutual TLS, keys, OAuth 2.0, and certificates, as well as fine-grained request validation capabilities.
- With the self-hosted gateway, API Management enables API governance across on-premises and multi-cloud environments while maintaining a centralized control plane, reducing latency and ensuring compliance across distributed systems.
- For app developers, API Management offers a customizable developer portal for self-service API onboarding, complete with automated documentation and an interactive console. API developers can use flexible API revisioning and versioning functionality to safely manage APIs.
- API Management supports various API styles, including REST, GraphQL, gRPC, SOAP, WebSocket, and Webhook. This flexibility allows organizations to manage a wide range of APIs within a single platform.
NEXT STEPS
Choose the Azure account that’s right for you
Pay as you go or try Azure free for up to 30 days.
Azure Solutions
Azure cloud solutions
Solve your business problems with proven combinations of Azure cloud services, as well as sample architectures and documentation.
Business Solution Hub
Find the right Microsoft Cloud solution
Browse the Microsoft Business Solutions Hub to find the products and solutions that can help your organization reach its goals.
Get the Azure mobile app 
