Skip to content

IBM API Connect Credentials

Service Name: IBM API Connect

Service Description: IBM API Connect is a comprehensive API management solution that enables organizations to create, secure, manage, and socialize APIs across their entire API lifecycle. It provides tools for designing, developing, and monitoring APIs, as well as analytics for API usage.

Service Address: https://www.ibm.com/products/api-connect

Validation Type: API Auth

IP Allow list: IP restrictions can be configured at the API gateway level through security policies.

Secret Access Scope: Grants administrative or developer access to IBM API Connect platform, allowing management of APIs, products, catalogs, and analytics.

Secret Revokement URL: https://cloud.ibm.com/apim/myaccount

Secret Example: ibmcloud:apiconnect:c1d2e3f4-g5h6-i7j8-k9l0-m1n2o3p4q5r6

Suspicious Activity Investigation Instructions:

  • Review API Connect activity logs for unusual API creation, modification, or deletion.
  • Check for unexpected changes to API security policies or rate limits.
  • Monitor for unusual API publishing activities or catalog changes.
  • Examine analytics for abnormal API traffic patterns or usage spikes.
  • Verify if there are any unauthorized users or roles added to the API Connect instance.

Mitigation Instructions:

  • Log in to the IBM Cloud console and navigate to API Connect.
  • Revoke the compromised API Connect credentials immediately.
  • Generate new credentials with appropriate permissions.
  • Review and update access control policies for all API Connect resources.
  • Enable additional authentication mechanisms like multi-factor authentication if available.
  • Audit all API definitions and security policies for unauthorized changes.
  • Consider implementing IP restrictions for administrative access to the API Connect console.
  • Update any client applications using the revoked credentials with new secure credentials.