Skip to content

Commit c705b1e

Browse files
author
Miao Jiang
committed
changes based on feedback
1 parent 06bf409 commit c705b1e

File tree

2 files changed

+5
-5
lines changed

2 files changed

+5
-5
lines changed

articles/api-management/api-management-and-aks.md

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
---
2-
title: Use Azure API Management with microservices deployed in Azure Kubernetes Service | Microsoft Docs
2+
title: Use Azure API Management with Microservices Deployed in Azure Kubernetes Service | Microsoft Docs
33
description: This article describes the options of deploying API Management with AKS
44
services: api-management
55
documentationcenter: ''
@@ -39,7 +39,7 @@ When we are ready to publish our microservices as APIs through API Management, w
3939

4040
The mappings can also evolve. Since API Management creates a façade in front of the microservices, it allows us to refactor and right-size our microservices over time.
4141

42-
![Map services to APIs](./media/api-management-aks/service-API-mapping.png)
42+
![Map services to APIs](./media/api-management-aks/service-api-mapping.png)
4343

4444
## Deploy API Management in front of AKS
4545

@@ -69,7 +69,7 @@ Cons:
6969

7070
Although Option 1 might be easier, it has notable drawbacks as mentioned above. If an API Management instance does not reside in the cluster VNet, Mutual TLS authentication (mTLS) is a robust way of ensuring the traffic is secure and trusted in both directions between an API Management instance and an AKS cluster.
7171

72-
Mutual TLS authentication is [natively supported](https://docs.microsoft.com/azure/api-management/api-management-howto-mutual-certificates) by API Management and can be enabled in Kubernetes by [installing an Ingress Controller](https://docs.microsoft.com/azure/aks/ingress-own-tls) (Fig. 3). As a result, authentication will be performed in the Ingress Controller, which simplifies the microservices. Additionally, you can whitelist source IPs with Ingress to make sure only API Management has access to the cluster.
72+
Mutual TLS authentication is [natively supported](https://docs.microsoft.com/azure/api-management/api-management-howto-mutual-certificates) by API Management and can be enabled in Kubernetes by [installing an Ingress Controller](https://docs.microsoft.com/azure/aks/ingress-own-tls) (Fig. 3). As a result, authentication will be performed in the Ingress Controller, which simplifies the microservices. Additionally, you can add the IP addresses of API Management to the allowed list by Ingress to make sure only API Management has access to the cluster.
7373

7474

7575
![Publish via an ingress controller](./media/api-management-aks/ingress-controller.png)
@@ -116,8 +116,8 @@ Cons:
116116

117117
## Next steps
118118

119-
1. Learn more about [Network concepts for applications in AKS](https://docs.microsoft.com/azure/aks/concepts-network)
120-
2. Learn more about [How to use API Management with virtual networks](https://docs.microsoft.com/azure/api-management/api-management-using-with-vnet)
119+
* Learn more about [Network concepts for applications in AKS](https://docs.microsoft.com/azure/aks/concepts-network)
120+
* Learn more about [How to use API Management with virtual networks](https://docs.microsoft.com/azure/api-management/api-management-using-with-vnet)
121121

122122

123123

articles/api-management/media/api-management-aks/service-API-mapping.png

-40.2 KB
Binary file not shown.

0 commit comments

Comments
 (0)