To onboard your Apigee On-Prem/SSO environment into Data Theorem's API security product and grant access to your configuration, the following information is needed:
The URL to the management API, which must be publicly accessible.
It can be exposed via Apigee itself as described at https://docs.apigee.com/api-platform/system-administration/configuring-ssl-premises-edge-installation)
The Apigee SSO login URL.
The name of your Apigee organization.
The username and password for a user with the “API Proxies - View” role.
This information will allow our service to list (with limited read access) your configuration in order to automatically discover resources and APIs.
For Apigee Cloud environments, on-boarding instructions are available at API Security: On-boarding Apigee SaaS .
Creating the “View API Proxies” user
The specific onboarding steps follow for adding a new cloud@datatheorem.com user:
Sign in to your Apigee Edge UI, http://ms-ip:9000 as an organization administrator, where ms-ip is the IP address or DNS name of the Management Server node.
In the left menu, select "Admin" and then "Organization Roles".
In the "Custom Roles" section, click on "+ Custom Role"
In the "New Custom Role" page:
Enter "DataTheoremAnalyzer" as the Role Name
In the "API Proxies" section, check "View”
When finished, it should look like this:
Select "Save"
In the left menu, select "Admin" and then "Users".
In the top right, click on "+ User".
In the New User page:
Enter cloud@datatheorem.com as the Email.
Select "DataTheoremAnalyzer" as the Role.
Select "Save"