![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 56.00000000000001%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,060 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 59%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
@Andrea Longhitano Thanks for reaching out. Yes, it is possible to use a Network Security Group to allow API calls only from specific IP addresses.
Determine the IP address or IP address range that you want to allow traffic from. In your case, you can use the Service Tag of Dynamics 365 to determine the IP address range.
Create a new NSG rule that allows traffic from the IP address or IP address range that you want to allow. You can create this rule in the Azure portal by navigating to the NSG resource, selecting "Inbound security rules", and clicking "Add".
Apply the NSG to the APIM instance. You can do this by associating the NSG with the subnet that the APIM instance is deployed to.
Once you have applied the NSG to the APIM instance, only traffic from the specified IP address or IP address range will be allowed to access the APIM instance.
do let me know incase of further queries, I would be happy to assist you.