Try our new research platform with insights from 80,000+ expert users

Layer7 API Management Valuable Features

Ronald D'Souza - PeerSpot reviewer
Presales Consultant for CA Southern Africa at Hyperion Holding Pty Ltd

This product has great drag-and-drop features and it requires minimal coding. 

View full review »
NikhilChaudhari - PeerSpot reviewer
Senior Associate Software at Intelliswift Software

Layer7 API Management is most valued for its drag-and-drop functionalities, the available policy options, and the excellent security features. I appreciate the ease of syncing the developer portal with Layer7 and the ability to publish DEP.

View full review »
MohammadImran - PeerSpot reviewer
Senior associate at a financial services firm with 10,001+ employees

The solution's most valuable feature stems from its providing a developer portal to its users. OTK configuration is available with Layer7 API Management, which helps deal with security. The main important aspect of the tool is related to the area called Layer7 API Gateway.

View full review »
Buyer's Guide
Layer7 API Management
December 2024
Learn what your peers think about Layer7 API Management. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
reviewer1179582 - PeerSpot reviewer
Assistant Consultant at a tech vendor with 10,001+ employees

API Management makes dealing with APIs easier. It'll help you to move ahead on your API application journey. The solution allows developers to create more advanced security policies

View full review »
Arpit Agarwal - PeerSpot reviewer
Enterprise API Architect at Al-Futtaim Group

Because we have only used the gateway part of the Layer7 solution, we have not explored a lot of the potential and capabilities in detail. It would be premature to go into details about what we may use or discover will be useful in the future. We still have to go into production. Feedback in terms of usability or the broader scope of features is not possible. The product has more capabilities that we were looking for in an API gateway in terms of security as well. We plan to incorporate all its advantages.  

The gateway and security features were the two most important requirements for us and the product has definitely met our expectations. That is currently most valuable to us.  

Upcoming features that we will soon incorporate will be Developer Portal, Live API Creator and Blazemeter.

View full review »
GaneshKhutwad - PeerSpot reviewer
Network security architect at ATOS

Layer7 API Management protects your company's whole environment, especially if you operate at a global level or in an area where a lot of people are involved in accessing your applications. Layer7 API Management serves as the best solution in any environment because if you see a honeypot, it is used to create a dummy network in an environment, meaning it creates a puzzle kind of environment for attackers.

View full review »
SM
Director IT Services at Telomeres

What I found most valuable in Layer7 API Management is that you can launch the API from the gateway quickly and securely, making it less complicated to deploy APIs.

I also like that Layer7 API Management has a good portal and dashboards and that the dashboards show you statistics regarding how many people used the API, etc.

View full review »
reviewer2281932 - PeerSpot reviewer
Enterprise Integration Architect at a retailer with 10,001+ employees

I appreciate Layer 7 API management for its comprehensive approach to the entire API lifecycle, including governance, management, and analytics.

View full review »
Aniket Karle - PeerSpot reviewer
Senior Developer at a tech consulting company with 10,001+ employees

I like the simplicity of developing APIs.

View full review »
SM
Director of Integration Services at a consultancy with 1-10 employees

The most valuable feature was the gateway because it has a good dashboard which shows all the hits, misses, and issues, how often you are viewing, what was the response time, etc. The gateway was very easy to deploy.

The dashboard was pretty simple. It had all the features, but the usage load was less initially. Now, the use cases slowly increase. 

View full review »
SP
Sr. Systems Engineer at a hospitality company with 1,001-5,000 employees

The out-of-the-box security features are useful. 

Right now, you can just right-click and drag and drop the assertions with the rate limit. That, as well as the x-amount surge protection, is built in so we can bring that in.

View full review »
HK
Director of Architecture at a healthcare company with 10,001+ employees

I work for a major healthcare company, it's amongst the top ten Fortune 500 companies and we've been leveraging CA API Management to make our healthcare business services available on the Cloud. To make them available on the Cloud and to enable our healthcare capabilities to be consumed by different consumers in real time across a plethora of channels.

We are leveraging CA API Management - we chose it by doing a huge comparison across different competitors. CA API Management helps us to securely consume various services and also the biggest thing has been to do monetization of services. We have certain rules that have been defined where you basically say that this specific healthcare capability is of greater value and we put a dollar amount to it as to which consumers can consume how much and based on its usage and all that.

CA API Management has been the driver for our digital transformation. It's interesting these days, the entire business is heading towards a completely distributed platform where the consumers are everywhere. You have business to business consumers, you have API management consumers and you have mobile consumers. At the same time, you have data providers that are growing heavily. You have data analytics placed platforms and then companies are heading towards providing helping consumers to make analytics-driven decision. Let the data drive the decision so now you're the middleware industry around microservices is facing its own challenge on how to meet the scores upstream and downstream from these back-end services. That's where the microservices platform, CA API Management heavily helps to make sure that you provide your services on the part.

View full review »
Rajasi Balan - PeerSpot reviewer
Principal Architect at a tech vendor with 10,001+ employees

In 2017, when we started working on Layer7, Apigee was the only competitor, which is still emerging as one of the great solutions for repair management. Layer7 was working out well for our needs. You can do many transformations. There's a lot of scripting admin layer gateway layer. It needs to be treated more as an anti-pattern because you don't do much scripting as the gateway layer. We use Layer7 extensively because of old legacy services and to recreate new modern services. Our customers are moving away from Layer7 because its management piece is not great. The monitoring and monetization parts are not coming out sooner. Other players like Mule or Apigee are coming up.

View full review »
VN
Architect at a computer software company with 51-200 employees

The product supports more than just HTTP protocols; it also caters to JMS and FTP protocols.

View full review »
ES
API Technical Lead at Sanlam

The Gateway is extremely flexible, which was one of the big plus sides.

We had to do a lot of custom integrations which the Gateway made quite easy. E.g. we have shortcomings in our existing legacy product stack so we leveraged the CA Gateway to handle these. (This is not necessarily just a technology limitation but a licensing limitation as well.) The Gateway is capable of integrating into the legacy IBM space. This was one of the reasons the product was chosen.

The capability to extend the Gateway functionality into reusable components is a big plus for us.
As we start integrating more platforms we face small behavioural differences between different technologies. The gateway lets you change very low level features to to change or add to the base functionality. As an example in one of our legacy systems we proxy the other system token endpoint. That way we could control the behaviour of the token endpoints and let different systems that interpret the RFC slightly differently, behave the same.

A big win for CA was the expertise of the local country support plus having support staff on site in a matter of hours, if required. This is not a product feature, but having local support was one of our deciding criteria for choosing the product.

View full review »
MJ
Lead Architect at a energy/utilities company with 1,001-5,000 employees

We use a pretty simplistic approach and it does what we need it to do for terminating connections and then reestablishing what we needed to do in a DMZ. All of those features are pretty good. We don't really use the full-blown API management solution which they offer, more just the gateway components.

From a security standpoint, it works great. It is the right solution for us. It's lightweight, a software-appliance configuration which was easy to deploy and configure. It is what we need. It does well protecting APIs against vulnerabilities.

It is okay for incorporating identity access control with OAuth.

View full review »
it_user778824 - PeerSpot reviewer
Design Engineer at Automatic Data Processing, Inc.

Security is definitely the top one, and other than that, it is a quite customizable product. I have seen that they are coming up with newer features and they are quick, coming into the market very quickly. Compared to other vendors, this product is much faster in coming up with new features, which is good. 

View full review »
UP
Lead Consultant at a tech services company with 10,001+ employees

It's a comprehensive tool that allows us to perform all the necessary tasks in one place. With other middleware API management tools, we might need multiple tools and layers to achieve the same results. This tool provides a single platform for managing security, real transformation, connectivity, and development, eliminating the need for additional add-ons.

View full review »
it_user581829 - PeerSpot reviewer
Solution Architecture / Digital Architect at a financial services firm with 10,001+ employees

I was doing all B2B integrations. The security features provided by the gateway are really cool. The tool can handle all complex security requirements. On-boarding APIs is very agile and fast.

View full review »
it_user491508 - PeerSpot reviewer
Sr Software XML Gateway Developer at a manufacturing company with 10,001+ employees

The following features are most valuable to me:

  • Extracting credentials for authentication
  • Security
    • This product handles security in their own and unique way. e.g internal identity providers, connect to any LDAP in organization and validate, Certificate checks etc.
    • It can do certificate authentications ( one way, two way).
    • It can read credentials and connect to any LDAP including its own internal identity provider using the credentials
    • It can generate SAML tokens for security
    • It can extract/parse XML/JSON element.
    • Password once stored in cannot be viewed, but can be extracted, this is major advantage when we use basic credential to any system to connect
  • Regular Expressions is one area where it has a big advantage for validation of strings
View full review »
RaviVerma1 - PeerSpot reviewer
Lead API Engineer at Boubyan Bank

The most important features of Layer7 API Management are the basic security functionality and validation checks. Additionally, it integrates well.

View full review »
AT
GM - Head of Digital Transformation at a financial services firm with 10,001+ employees
  • Containerization
  • The monetization module 

They're quite unique for an API tool. 

Although we didn't test the monetization, the flexibility of the tool could be quite useful. Right now, we're not looking to monetize any of our open APIs for the next few months, but it will be a focus for banks in a year or so. The nimbleness of the monetization tool is very good, where you can just drag and drop elements that would make up the monetization.

In addition, the development time and rollout time are pretty quick.

View full review »
reviewer881136 - PeerSpot reviewer
Senior Director IAM Security Engineering at a financial services firm with 10,001+ employees

The security features are the most important because that's what we're using the application for, specifically.

View full review »
it_user881124 - PeerSpot reviewer
Senior Director at a tech services company with 10,001+ employees

CA API Developer Portal and API Security policy.

View full review »
it_user482415 - PeerSpot reviewer
Principal Architect at a tech services company with 1,001-5,000 employees

What I felt was when we reviewed it along with the multiple other vendors in the market was that the operational side of API Management is pretty simple, so that we can ramp it up very fast in our organization. The way the product is built was really good. 

View full review »
reviewer1728963 - PeerSpot reviewer
Software Developer III at a financial services firm with 1,001-5,000 employees

The most valuable feature of Layer7 API Management is that their policy is really easy to develop and it is flexible.

View full review »
it_user558072 - PeerSpot reviewer
Infrastructure Middleware Manager at a wellness & fitness company with 10,001+ employees

One valuable feature is the ease of development of the policies for the product. It's very easy to have a brand new developer come in and develop a policy to expose our APIs.

View full review »
it_user17886 - PeerSpot reviewer
Manager, IT Security & IT Office of the CIO at a engineering company with 1,001-5,000 employees

It’s a way for us to secure our externally-sourced API calls that come into the organization. The two things are 1) protocol translation where we can let a REST call come in and get converted to some legacy protocol, and 2) security token translation support because we need to convert a standard industry token to something an internal system will understand.

View full review »
it_user882708 - PeerSpot reviewer
Business Development - Alliances and Partnerships at a tech services company with 10,001+ employees

Security is the most important parameter of the solution, for me, because whenever you are exposing your APIs to third-parties, it is critical that the data remains anonymous and that data is retained within the system, that it is not leaked. CA API Management provides good security features and that is very critical.

View full review »
PB
Computer Scientist at a tech company with 10,001+ employees
  • The lightweight mediation
  • Transformation from JSON to XML and XML to JSON
  • API portal and API key management
  • The Developer Portal
  • Some of the key SSL sessions, inside the gateway
  • Circuit Breaker is a cool feature, too
View full review »
it_user778875 - PeerSpot reviewer
Lead Software Developer at United Services Automobile Association

I'm mostly involved in using the OTK for OAuth security. We use the OAuth for all of our reactive APIs, for B-to-B to come in, and we're starting to onboard those now. 

It's been pretty easy to use so we enjoy that, other than a couple of challenges we're having with it currently.

View full review »
it_user572838 - PeerSpot reviewer
Manager, .Net And Mobile Applications Development at a energy/utilities company with 1,001-5,000 employees

The most valuable features are definitely the security it provides and the ability to code to the roles, so that way, when the people come in, they actually have their roles identified and then, we're able to actually distribute the data through the message, to them. Role usage has really been important for us.

View full review »
it_user479754 - PeerSpot reviewer
Founding Partner - Principal at Vanick Digital

The most valuable features of the solution is the gateway and the power of the gateway. The CA solution, as far as how it rates with other products in the marketplace, gives you one of the most robust sets of gateway functionality and security capabilities out of the box in a configurable fashion. Instead of having to actually write code to achieve those things, the CA Layer 7 product gives you the ability to actually configure a very broad range of capabilities and policies directly out of the box.

View full review »
it_user778794 - PeerSpot reviewer
Technical Principal at FedEx Corporation

There are many things, which are really good, like the Gateway. That's really great and pretty useful. The Mobile API Gateway is also great.

View full review »
SP
Sr. Systems Engineer at a hospitality company with 1,001-5,000 employees
  • Time to market
  • Ease of use
  • Strong support
View full review »
it_user348429 - PeerSpot reviewer
Manager - API Management at a insurance company with 5,001-10,000 employees

It’s central to our mobile-first strategy. The API layer is becoming the interface to all of our legacy back-end and all of our new app development is being built on top of our API layer.

Key features – integration with SiteMinder and its ability provide security in general, content-based routing, and ability to turn our existing SOAP service back-ends into new REST-JSON APIs.

View full review »
AS
ALiBS Solutions at ALiBS Solutions

There are many beneficial features in this solution that protect against attacks, such as SQL, injection, and the internet.

View full review »
it_user482193 - PeerSpot reviewer
Sr. Manager - Delivery, Enterprise & Platform Architect at a tech company with 10,001+ employees

The most valuable feature is security, which is the most important to our company. Then comes performance, scalability, and I see tremendous performance value without compromising the security. It gives us peace of mind, for example there are so many penetration attacks happening, DDoS kind of attacks happen in our API infrastructure if you don't have the security. With the out of the box security features from CA API Management, I can focus on the business logic to deliver the real value to the consumers, without worrying about the security. It's very stable, we've been in production for the last year and we didn't have a single production incident because of the API Management solution. I'm really happy with that actually. It's very stable and very reliable.

View full review »
GS
Technical Director at SoftPro

Controlling microservices for my customers.

It provides a good user interface and is easy to use.

View full review »
it_user778806 - PeerSpot reviewer
Owner at Clarity Iq Inc

The most valuable feature is that it enables me to present data in the format that the client wants to consume it. That client might be a visualization tool, that client might be a report, that client might be a customer's API requirements.

The challenge is, how do you get the data structured in the way they want it, as opposed to how do you get them to change. My job isn't to make them change, my job is to give them what they want. Honestly, when you give people what they want, it's easy. When you try to get people to change what they're doing, it's hard.

View full review »
it_user778812 - PeerSpot reviewer
Technical Principal at FedEx Corporation

The most valuable, for the Gateway, is it can front our APIs very easily, and it can integrate with FedEx easily, so those are good. 

For the Portal, we are able to manage with APIs and documentation. However, there are a lot of improvements, which could be done on the Portal side.

View full review »
it_user779280 - PeerSpot reviewer
Senior Manager Global Devops at Encore Capital Group

Most valuable features are 

  • the ease of use
  • a very nice UI
  • you can navigate through the screens
  • a very good search feature.
View full review »
it_user778716 - PeerSpot reviewer
Solution Architect at a pharma/biotech company with 1,001-5,000 employees

I think the flexibility. It's very configurable. Each policy is very customizable, where we can accommodate different capabilities that our trading partners actually have. Even though from a textbook standpoint, there's always a certain ideal pattern that you want to apply, that's rarely the case with our trading partners. That flexibility is very important.

And the main point of the Gateway is the security aspect of it. It's very good from that standpoint. It has met all of our expectations. We're very happy with that.

View full review »
it_user457872 - PeerSpot reviewer
Head of Sportsbook Delivery at Gala Coral Interactive

In our context, we have a number of REST APIs that we had to expose, a number of partners, internal users, as well as external partners who wanted to basically integrate cleanly and quickly, but didn't want to do five independent integrations into each API, so the CA tool allows us to effectively wrap those APIs into a common interface, so you can make one call and then the gateway will go away and make the other calls for you. That is the primary goal was that and the tool does that for us.

View full review »
it_user558081 - PeerSpot reviewer
Enterprise Solutions Architect at Logisticare

We modified our architecture to focus on microservices. This allows us to have a front door where we can separate and abstract services from APIs. We can use the API Gateway as the entry point to our enterprise. We can actually monetize our services, our APIs, and build a generic integration architecture using RESTful APIs.

View full review »
it_user558057 - PeerSpot reviewer
Lead Software Engineer at a wellness & fitness company with 501-1,000 employees

We use the API Management tool mostly for the portal application and managing the APIs.

CA has a portal where we can expose the public and private APIs across the globe. We use it as a gateway for security and exposing the internal applications through that layer.

For us, it acts like a proxy as it passes through the API layer. We use it to transmit data from one format to another format, especially to route the data based on the content. This is a seamless process. There are little challenges in regards to the AWS integration but we were able to get through that and CA helped us move towards AWS.

The problem was that it was slow. This product was initially built as an in-house product, but later on they converted it to a pilot product. It was not ready at that time but now it is. We are fine-tuning it to make it available on AWS; so, it's good.

View full review »
it_user558309 - PeerSpot reviewer
Enterprise Architect at a retailer with 1,001-5,000 employees

The most valuable feature is that the API gateway is very strong in security. Most of the enterprises have exposed their back-end services as APIs and everything is okay if the APIs are accessed internally within the enterprise. However, now with all kinds of mobile channels and omnichannel customer experience, the APIs get exposed to the outer world; at such a time, you need something so that you can secure your data. You don't want to be in the news that something bad has happened. Thus, API gateway acts like a security gateway.

It has the ability to enforce security policies on APIs so that the user transaction is secured. Thus making sure that the transaction is a real one and not an unauthorized/hacked transaction.

View full review »
it_user558432 - PeerSpot reviewer
Head of Digital at Banco Votorantim

We acquired this platform to give more agility to inter-development. We are using this platform, for example, to deliver a fast integration between our back-end platform and our front end. CA API Management enables us to very quickly create and manage the business rules, and do the integration. After this implementation, we reduced our lead-time in integration and development by approximately 50%.

View full review »
it_user479772 - PeerSpot reviewer
VP Product Development at a financial services firm with 10,001+ employees

In terms of priority: the scalability, uptime and the way that it's versatile. You can load up multiple different kinds of services at the same time. We have multiple different services going live on a particular platform, concurrently. It happens a lot. It's important for a system to handle that. Then CA's API solution also works with multiple solutions which are provided by CA, like LISA tools and all that. Altogether, it's a very cohesive unit.

View full review »
reviewer1721013 - PeerSpot reviewer
Senior Consultant at a financial services firm with 10,001+ employees

The most valuable feature is the basic authentication.

View full review »
reviewer1466349 - PeerSpot reviewer
Senior System Engineer at a tech services company with 51-200 employees

The best part about it is that it doesn't stop if something is missing during the installation. It looks for it on its own. I don't have to be there to do it physically.

View full review »
AK
Layer7 API Developer at Allied Globetech

I haven't found that there are any most-valuable features. I'm not using any feature most often in any of my use cases. The use cases depend upon the customers' requirements.

In terms of protecting APIs against threats and vulnerabilities, there are a few assertions which are built-in for threat protection. I have used them for vulnerabilities, like for DDoS attacks, XML schema validation, IP restriction, and for cross-domain.

View full review »
it_user778611 - PeerSpot reviewer
Senior Lead Engineer at a tech consulting company with 10,001+ employees
  • For developers to be able to come, sign up, or find APIs. 
  • Sign up for the API and start using it in their applications without a Gateway developer having to get involved. 
View full review »
it_user778536 - PeerSpot reviewer
Senior Associate at a financial services firm

The security that it provides, actually. Being in the financial services industry, obviously security is very important for us.

View full review »
it_user631233 - PeerSpot reviewer
VP Of IT Development at a tech services company with 1-10 employees
  • Availability of Security Assertions: Addresses all the industry security standards
  • High Flexibility: Allows policy-driven orchestration and security mediation, in a drag-and-drop manner
View full review »
it_user558405 - PeerSpot reviewer
Programmer Analyst at a healthcare company with 10,001+ employees

The most valuable features are reliability and scalability; it's just easy to deploy across our environment. We like those features.

View full review »
it_user558021 - PeerSpot reviewer
API Champion at a tech services company with 501-1,000 employees

The best features for us are documentation, the development portal, ease-of-use, and click-to-market. Our API landscape is increasing exponentially and one if the differentiators that allow us to reach our goals is how fast we can get to the market. And our speed-to-market is based on ease-of-deployment and how fast we can iterate and change.

View full review »
it_user558360 - PeerSpot reviewer
Head of Group Technology at a logistics company with 1,001-5,000 employees

The Mobile SSO and Developer functions are the most valuable features. The Mobile SSO functionality is not available with most similar products in the market, which makes this a unique product. The Developer function helped the developers to be self-sufficient meaning they did not need a lot of training and they could do things on their own.

API security was another important feature in terms of how you are able to control usage of digital assets and access your systems from the outside world. Thus, security was a good feature.

Lastly, the monetization part was also important. We have not started off yet but monetization was one more thing that we were very happy and keen about when we saw this product.

View full review »
it_user497217 - PeerSpot reviewer
Vice President of API Management Division at a tech company with 51-200 employees
  • Security
  • Flexibility
  • Ease of use
  • Message translation
View full review »
it_user343143 - PeerSpot reviewer
VP, EIM Data Architect at a financial services firm with 1,001-5,000 employees

The most valuable aspects for us are the security features, such as OAuth and access control. Furthermore, it's a flexible tool that performs well.

View full review »
it_user880812 - PeerSpot reviewer
Technology Analyst at Infosys Technologies Ltd

I think it's very valuable because of the support desk in one application. It protects us well. That is very important.

In terms of security, it's mostly been enough until now. I had used them in my local work. I was playing with them and saw that they support everything. It's almost all covered so far.

View full review »
it_user797973 - PeerSpot reviewer
VP Enterprise Solutions - Financial Services at Samsung

CA has incredible reach in the market across industries. To have the opportunity to partner with CA has been great for us, a great exposure. They have got a very compelling platform that enables organizations to easily develop and roll out mobile applications. 

A lot of their customers have come and said, "We'd like to be able to enable these mobile applications with biometric authentication capabilities." It is really a nice blend. We are able to provide that capability to enable that platform to deliver that to their client base.

View full review »
AM
Business development manager at Sec4you

The mobile access gateway (MAG) is tremendous.

View full review »
reviewer1331391 - PeerSpot reviewer
IT / Enterprise Architect, IT Consultant at a consultancy with 11-50 employees

The ability to control the web services. Actually what it is being mostly used for is to control the access. Most of the access is being controlled through IP filtering, IP whitelist. In addition to that, we are moving slowly towards using more client certificates.  

View full review »
AM
Business development manager at Sec4you

There are many security policies within this solution that help to prevent attacks. We are also able to implement MTLS to allow us to lock a channel from the application from the backend. There are authentication flows inside of the gateway that help us a lot to implement customers improved user experience. 

View full review »
SeniorTe947f - PeerSpot reviewer
Senior Technology Architect at a tech services company with 10,001+ employees

API discovery using CA Live API Creator is helpful for integrating with multiple backends, for discovering and kickstarting the API creation process. It is a very good feature.

Mobile app capabilities are good for building mobile apps to consume developed APIs.

API Portal capabilities are very nice, up to and including the ability to do monetization. Security features are exhaustive, with several adapters to all leading identity suites.

View full review »
it_user882714 - PeerSpot reviewer
Experts in Integration Models at a consultancy with 5,001-10,000 employees
  • Current security models which are the focus of the industry. 
  • The product documentation helps the client and/or user to evolve quickly while using the tool.
  • Support has efficiently combined with the forum.
View full review »
it_user639678 - PeerSpot reviewer
OSS Enterprise Architect

Security is the fundamental use of the gateway so the security assertions are heavily used and are consistent. We also use it to broker asynchronous messaging across DCs transforming between messaging technologies to provide real time updates for customers in a really secure way.

Also, the actual management of APIs is fundamental to us, as we're a heavy API user/provider. So, obviously, a centralised management platform is important.

View full review »
it_user484275 - PeerSpot reviewer
Sr. Manager - Technology Governance and Architecture at a tech company with 10,001+ employees

From our perspective, the most important aspect is the ability to scale without compromising performance as well as security. That’s the most important aspect, and that’s one of the reasons why we chose the CA product, because it does scale for our needs to grow without compromising performance.

Also, security is very key. We are in a marketplace that companies are being hacked, so we didn’t really want to compromise in any of the security aspects of it.

Good performance and ability to scale not only for now but also in the near future as we organically grow the company.

View full review »
it_user351327 - PeerSpot reviewer
Sales Engineer at a tech services company with 51-200 employees

It has built-in identity management so that when someone logs into the UI, it can confirm their identity and give them access to what they need to see.

Overall, it's a great tool and they keep building in more and more capabilities.

View full review »
reviewer1441035 - PeerSpot reviewer
Automation Engineer at a computer software company with 10,001+ employees

It is helpful to have a central API that is hosted and managed.  It reduces costs and customers, suppliers, and vendors receive a uniform interface.

View full review »
it_user778623 - PeerSpot reviewer
Enterprise Architect at DXC Technologie

The most valuable feature, as I mentioned, is the composability, because we use a lot of functionalities. 

Also, right now we're looking into the Dockerized version of API Gateway because that would allow us to flow nicely into our Microservice Architecture.

View full review »
CyberSec9bc8 - PeerSpot reviewer
Cyber Security Advisor
  • The ToolKit with OAuth Manager
  • The Policy Manager
  • The Gateway Migration Utility (GMU) is a pretty good tool to use.
View full review »
it_user558363 - PeerSpot reviewer
Manager, Information Technology - Integration Technology Engineering at a financial services firm with 5,001-10,000 employees

The best features of CA API Management are high quality and high reliability.

View full review »
SM
CEO at Next Generation Technocom Pvt Ltd

The product works well from an implementation perspective.

View full review »
Stefan Zivanovic - PeerSpot reviewer
Cyber Security Consultant at CyberGate Dfenese

The product has a user-friendly interface. There are customization options, unlike the previous version, where we had to do manual coding. We use the configuration wizard to set it up. It saves us a lot of time.

View full review »
Reviewer960 - PeerSpot reviewer
Sr. Tech lead at a manufacturing company with 10,001+ employees

The API gateway is good. 

View full review »
Architeca111 - PeerSpot reviewer
student at a tech services company with 1,001-5,000 employees

Security, out-of-the-box policies.

View full review »
it_user778641 - PeerSpot reviewer
Senior Engineer at a transportation company with 1,001-5,000 employees

Quick response to the setup authentication for web services. That's important to us because we generally don't have a lot of time.

View full review »
it_user701361 - PeerSpot reviewer
Associate Vice President at a financial services firm with 10,001+ employees

Live API Creator.

View full review »
it_user345549 - PeerSpot reviewer
IT Mobile/Web Solution Delivery Manager at a insurance company with 5,001-10,000 employees

I'd say the API gateway that routes traffic in REST-to-SOAP conversions is a feature we find most valuable. SOAP is a type of web service, and REST is another.

View full review »
it_user399735 - PeerSpot reviewer
Senior Consultant at a tech services company with 51-200 employees

It's a purveyor of tools for managing and securing APIs. It is flexible in how it creates custom policies and uses builds with impressive methods.

View full review »
SM
CEO at Next Generation Technocom Pvt Ltd

We loved the portal part the most, which had monetization and showed how people were using the stuff. It is a good product as a whole and has a lot of microservices and granular features.

View full review »
it_user674037 - PeerSpot reviewer
Transformation and Change Management Leader at a logistics company with 1,001-5,000 employees

It provides us with a resilient solution and robust policy configuration. It is able to withstand the number of API calls and handle different API requirements to secure, transform, log, and track API usage patterns.

View full review »
it_user778770 - PeerSpot reviewer
Solution Architect

Security.

We get a lot of class actions, payloads, which have real security requirements, like personal identification information. So we need to protect all of this information, make sure it is secure. 

Also, we can handle the huge class actions we get from different clients.

View full review »
it_user778629 - PeerSpot reviewer
Enterprise Architect

Most valuable might be the security assertions, the policy assertions that are able to be bound somehow to the APIs.

View full review »
it_user635433 - PeerSpot reviewer
Architect at a tech company with 201-500 employees
  • Any-to-any integration.
  • The abilities to bridge messaging protocols and transform data enable us to input/output data from/to/through SOAP, JSON, MQ, JMS, databases, FTP between various backend systems, facilitating business process automation.
View full review »
it_user353421 - PeerSpot reviewer
IT Analyst at a retailer with 1,001-5,000 employees

Considering the various features of the API Management suite, the most obvious useful feature that we value the most is that it gives us more security, control and visibility over how our APIs are being used throughout our company and how our users are using it. It gives us more data and information so that we can target where to concentrate our resources a lot better.

The other thing is also it's in the right place at the right time. APIs are a huge thing right now especially with the mobile economy growing as rapidly as it is. The API gateway could not have come at a better time for us.

The UI on it is actually better than SiteMinder. It has a much more IDE type of feel to it.

View full review »
it_user898710 - PeerSpot reviewer
Software Engineer at a tech vendor with 501-1,000 employees

It takes an existing service, like JSON or SOAP, and converts it for use on the application (e.g., REST services).

From a security point of view, there are different types of attacks: cross-origin resource sharing, SQL injection, shell scripting, and code injection. These type of attacks can be eliminated with the help of this tool because they are built-in with rules. If I drag and drop one rule called cross-origin resource sharing to the website I want to allow it on, only that website can contact CA API Management regarding this assertion. 

For an OAuth perspective, the application needs to be registered at my API Gateway. Once the application is registered, every time a user requests access to my API Gateway, I have to capture whether it is a valid application or not. Once it is getting validated, only then will it show them the access page for the login page to the application.

View full review »
MM
General Manager at Global SEIS

The most valuable features of Layer7 API Management are integration, ease of use, building APIs easily, and portal straightforward.

View full review »
AS
Practice Lead at a tech services company with 11-50 employees

Although a lot of features come handy, the most usable feature is that solution kits are customizable. We were able to cater to a large variety of implementation and customizations with ease.

View full review »
it_user352995 - PeerSpot reviewer
Expert Architect at a tech services company with 1,001-5,000 employees

Security is the most valuable feature for us. We have a lot of threat protections turned on and I think the gateway has inherent security protections for DDoS and a whole list of other security risks. We also have the ability to customize the security of each product that we're doing, which has been really helpful. 

It also provides some load-balancing features. We can choose which traffic goes to which back-end server and the gateway will help us manage all that.

View full review »
BL
Senior System Analyst at National Institute of Education
  • Policy assertion
  • Policy manager
  • SSO
  • Authentication
  • HA features
  • Analytics
  • Very extension logs
View full review »
it_user778503 - PeerSpot reviewer
Software Engineer at a tech services company with 10,001+ employees

The extensibility of it. It can do a lot of things. You can create little, custom Java assertions that you can insert to do your business logic, which might not be covered by the commercial product out-of-the-box. 

View full review »
WG
Arquitecto de Soluciones at Puntos Colombia S.A.S.
  • The speed and versatility in the implementation of APIs without writing a line of code in any programming language.
  • The solution has numerous configuration options to increase security in communication.
  • The administration interface (Policy Manager) is very easy to understand and use.
View full review »
it_user778995 - PeerSpot reviewer
Integration Architect at a comms service provider with 10,001+ employees

From the security point of view it provides lot of features, as well as performance. I think it's 4000 transactions per seconds, per node, is what the performance is. So those two are major features that we have been looking for. It does both in a great way.

View full review »
it_user558069 - PeerSpot reviewer
Integration Platform Manager at a comms service provider with 1,001-5,000 employees

The Gateway is most important because it is our strategic front door into the company for all APIs.

View full review »
SK
Technical Consultant at a computer software company with 501-1,000 employees

The most valuable features to me are:

  • Different Form Factors: Available as Software, Virtual Appliance, Amazon Machine Image and Hardware.
  • API Virtualization: Creating virtual APIs by shielding the actual enterprise resources on API Gateway.
  • Security: Enterprise data security and central management in API Gateway.
  • API Lifecycle Management: Enable, Disable, Assigning, Deprecating and Deleting APIs on API Portal
  • Scalability: API Gateway is easily scalable horizontally and managed easily.
  • Mobile SSO is another feature/capability which available.
View full review »
it_user607752 - PeerSpot reviewer
Senior Consultant

Its simplicity; and it's user friendly. Advanced Authentication and Security features. Ability of Gateway to create API on the go with compatibility to integrate with all Blackened Systems (MQ native, JMS, SFTP, HTTPS, SCP, Windows/Oracle, LDAP, etc.).

View full review »
it_user637836 - PeerSpot reviewer
Application Integration Developer I at a financial services firm with 1,001-5,000 employees

The built-in routing platform is the most valuable feature. It is easy to use.

View full review »
RM
IT Consultant at ENTIIS PTE. LTD.

API security. Implementing security is hard in general but for this product, almost all security features are available out-of-the-box and can be deployed rapidly.

View full review »
it_user778983 - PeerSpot reviewer
Prof IT System at a comms service provider with 10,001+ employees

The main feature is the security, and then the performance of the APIs is good. The monitoring part is also helpful.

View full review »
it_user667791 - PeerSpot reviewer
Lead Infrastructure Architect with 11-50 employees

API Enhanced Portal 4.1 looks very promising. API Gateway policy manager for writing policies is excellent. It is the best in the industry for policy writing.

View full review »
it_user502011 - PeerSpot reviewer
Senior Java Developer/ Solution Architect at a financial services firm with 501-1,000 employees

It provides a simple way to create REST APIs. It provides easy integration with REST and SOAP services. It has its own language, which make it possible to design and implement the complete flow using existing services and databases, and to create and aggregate fine-and coarse-grained APIs.

View full review »
it_user558333 - PeerSpot reviewer
Leads System Engineer at a consultancy with 1,001-5,000 employees

This product is easy to use. We are able to troubleshoot with the logs that it creates and it's easy to get people up to speed on it.

View full review »
RS
Consultor de segurança at a tech company with 1-10 employees

I work for an information security company. CA API Management is capable of using tokens for authorization to manage access control for the APIs.

View full review »
it_user760710 - PeerSpot reviewer
Development Manager API Management - Digital Technology Services at a energy/utilities company with 10,001+ employees

It's a secure product that allows us to expose API and lock down to only those devices and individuals which have the verified rights to access.

View full review »
it_user351495 - PeerSpot reviewer
Chief Engineer (R&D for VoIP, Networking and P2P) at a tech services company with 1,001-5,000 employees

The published API is easy. We don’t have any idea how to create or add value to the API to aggregate security, and we want to add the CA API gateway.

View full review »
it_user882711 - PeerSpot reviewer
Solution Architect at a construction company with 1,001-5,000 employees

The Portal API helps us with deployments. It also helps to have a catalog of everything.

The replication is also a critical feature for us. It helps to have a more robust architecture and makes our systems are highly available.

View full review »
Buyer's Guide
Layer7 API Management
December 2024
Learn what your peers think about Layer7 API Management. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.