IBM API Connectoffers bothauthentication and authorization capabilitiesto secure APIs using OAuth and OpenID.
IBM API Connect Security Features: IBM API Connect provides built-in capabilities for managing OAuth and OpenID Connect authentication and authorization flows. It allows users to define security policies that enforce these protocols to protect APIs.
Use of OAuth and OpenID: API Connect enables organizations to create user registries, apply security policies, and manage tokens for OAuth 2.0 and OpenID Connect, providing end-to-end security management for APIs.
References from IBM Cloud Professional Architect Materials:
IBM documentation on API Security in IBM API Connect confirms that API Connect handles both authentication and authorization for securing APIs.
Other options are incorrect:
B. IBM API Connect APIs must be secured by a third partyis false; API Connect itself provides these capabilities.
C. IBM API Connect is providing authentication, but authorization can be provided by IAMis incorrect because API Connect manages both.
D. IBM API Connect creates user registries, but OAuth isn't allowedis incorrect; OAuth is fully supported.
=================
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit