GA Azure API Management Self-hosted gateway authentication using Azure Active Directory
Published date: May 25, 2023
We are announcing a new authentication method for the Self-hosted gateway with the configuration endpoint. The self-hosted gateway relies on an outbound connection to a configuration endpoint to fetch configuration and expose APIs running in non-Azure environments.
This communication between the self-hosted gateway and the configuration endpoint was previously secured using a pair of keys and gateway tokens. These tokens expire every 30 days and need to be renewed in the containers every 30 days.
With the new Azure Active Directory authentication, we will rely on managed identities, app registrations, custom roles and oauth2 to secure the communication between the self-hosted gateway and the configuration endpoint. Removing the need to rotate secrets every 30 days in the containers.
Click here to learn more.