Ensure that your Azure API Management service instances are configured to use client certificates for authentication in order to enhance security and establish trust between API clients and Azure API Management.
Securing access to Azure API Management services using client certificates provides an additional layer of authentication and ensures that only authorized clients with the correct certificates can access the APIs, enhancing overall security and protecting sensitive data. Using client certificates makes it much more difficult for attackers to intercept and modify API calls.
Audit
To determine if your Azure API Management services are configured to use client certificates, perform the following operations:
Determining whether your Azure API Management services are configured to use client certificates via Azure Command Line Interface (Azure CLI) is not currently supported.Remediation / Resolution
To ensure that your Azure API Management services are configured to use client certificates in order to secure access to your APIs, perform the following operations:
Configuring Azure API Management services to use client certificates via Azure Command Line Interface (Azure CLI) is not currently supported.References
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Secure access to APIs using client certificates
Risk Level: High