Configure API Gateway to authenticate and authorize end users using an LDAP directory server.
Integrate with Identity Management servers
API Gateway contains a set of message filters that directly or indirectly restrict access to resources or web services.
Filters that directly control access include XML-signature verification, CA certificate chain verification, and SAML assertion verification. With these filters, policy decisions are made and enforced within API Gateway itself.
Filters that indirectly control access offload the policy decision to an external access management system. With these filters, the policy decision is made by the external system but then enforced by API Gateway.
API Gateway can leverage your existing Identity Management infrastructure, thus avoiding the need to maintain separate silos of user information. For example, if you already have a database full of user credentials, API Gateway can authenticate requests against this database rather than using its own internal user store. Similarly, the API Gateway can authorize users, look up user attributes, and validate certificates against third-party Identity Management servers.
Configure API Gateway to authenticate and authorize end users using CA SiteMinder.
Configure API Gateway to authenticate and authorize end users using RSA Access Manager.
Configure API Gateway to authenticate and authorize user requests against Oracle Access Manager (OAM) 11gR2.
Configure API Gateway to authorize authenticated users against Oracle Entitlements Server (OES) 11g and 11gR2.
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.