In this tutorial, you will learn how to generate keys on a Mac OSX system. The keys generated here are for testing purposes only and are self-signed. The public certificate generated can then be used for SSL Mutual Authentication to Forum Sentry. … Read More
Author Archives: Mamoon Yunus
How to create a REST policy in Forum Sentry
In this tutorial, we will show how to create a REST policy in Forum Sentry. As an API gateway, Forum Sentry provides the ability to lockdown APIs generating XML and JSON traversing within and enterprise network. … Read More
NFS to Amazon S3 using Forum Sentry Cloud Controller
Forum Sentry Cloud Controller offers a robust NFS listener than enables NFS clients to move files to Amazon S3 and other cloud providers. Whether you need to rotate your log files, backup your customer database, or just scale out to infinite storage in the cloud, Forum Sentry Cloud Controller provides you with the highest access control and encryption functionality to bridge data movement from your application servers. … Read More
API Identity Management with LDAP Server
Most corporations deploy LDAP severs such as OpenLDAP to store identities used for SSO and API identity management. Application users authenticate against these LDAP servers to gain access to APIs. To avoid an intrusive, non-scalable agent-based model — where … Read More … Read More
Infinite cloud storage scale-out with enterprise IdMs
Public cloud storage providers such as Amazon S3, Google Cloud Storage, and Rackspace Cloud Files provide practically infinite storage capacity for enterprise data center. A secure scale-out for corporate data storage to public cloud providers requires traversing the public-private cloud boundary. … Read More
Using HTTP Basic Auth for API Identity Management
APIs are proliferating corporate networks. Business owners seek APIs that solve their requirements regardless of whether the APIs are homegrown or provided by 3rd parties. For both cases — internal and external APIs — controls have to be enforced on who gets to use what API. This level of API control requires enabling Identity Management for APIs. … Read More
Users, Groups and ACLs for API Identity Management
Identity management is the cornerstone for building a secure infrastructure that uses internal and 3rd party APIs. By defining users, groups, and access control lists (ACLs), companies can granularly control who gets to use what API-based resource. In this tutorial, we will configure users, groups and ACLs on Forum Sentry API Gateway for authenticating users and authorizing API access. … Read More
Protecting your API Listener through SSL
In this tutorial, you will learn how to rapidly protect your corporate APIs by providing a centralized SSL policy for your service. We will use three components for this tutorial: (i) TempConvert – a publicly available service that will be the corporate service that you plan to protect through SSL (ii) Forum Sentry to enable centralized API security via an SSL policy (iii) SOAPSonar used as a testing tool. … Read More
Signer Groups and CRLs for API Security
In this tutorial, we will show how to enable and manage Signer Groups and CRLs rapidly for establishing APIs security using Forum Sentry API Gateway. … Read More
Advantages of API Gateway for managing SSL
Through SSL (SSLv3, TLS v1.1/1.2), API Gateways such as Forum Sentry rapidly secure your APIs that shuttle XML, JSON, HTML, SOAP and Big Data. API Gateways typically sit in front of your IT components such as web servers, application servers, … Read More … Read More