Try our new research platform with insights from 80,000+ expert users
it_user667791 - PeerSpot reviewer
Lead Infrastructure Architect with 11-50 employees
Real User
The most valuable features are API Enhanced Portal 4.1 and API Gateway policy manager for writing policies
Pros and Cons
  • "API Enhanced Portal 4.1 looks very promising. API Gateway policy manager for writing policies is excellent. It is the best in the industry for policy writing."
  • "It is not possible for clients to migrate to a newer version."

What is most valuable?

API Enhanced Portal 4.1 looks very promising. API Gateway policy manager for writing policies is excellent. It is the best in the industry for policy writing.

How has it helped my organization?

CA is the first in the market from the time they acquired Layer 7. They deliver the best API Management solutions.

From 2012, our clients evolved a lot from API Management perspective after using CA.

We are able to expose mission critical APIs to the external world, monetize them, and generate revenue from them in the most secure manner.

CA also drastically improved the capabilities from Gateway, Portal, and OAuth perspective in the last couple of years. This adds more value to our API Management wing.

What needs improvement?

CA API Portal 3.5 does not support Swagger documentation. If they were to support that, it would be great. However, their focus is on a newer, enhanced version of their API Portal 4.1 Release. However, it is not very mature and there is no direct migration available in the near future. It is not possible for clients to migrate to a newer version.

CA might lose clients mainly for this reason (Swagger Support on API Portal 3.5), unless they develop seamless migration utilities from API portal 3.5 to 4.1.

For how long have I used the solution?

I have used CA API Management from 2011, when Layer 7 had not yet been acquired by CA.

Buyer's Guide
Layer7 API Management
December 2024
Learn what your peers think about Layer7 API Management. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.

What do I think about the stability of the solution?

From an API Portal 4.1 perspective, I did encounter multiple issues.

What do I think about the scalability of the solution?

From an API Portal 4.1 perspective, I encountered scalability issues. They confirmed that they are working on it and in the very near future, it will be available.

How are customer service and support?

CA has very good API Management support. They are very helpful.

Which solution did I use previously and why did I switch?

We didn’t use a solution before this one. CA is the best in the market in terms of stability, scalability, and policy development. They are the best at achieving custom scenarios related to clients (customization) in all perspectives, besides the current API Portal 4.1, as it is not yet matured enough. There is nothing to worry about in the 4.1 portal.

How was the initial setup?

The initial setup was straightforward. CA documentation is pretty clear for anything to do with CA products. They are masters in this industry.

What's my experience with pricing, setup cost, and licensing?

If the CA pricing for API management would be a little lower, they would be able to cover a broader market.

Which other solutions did I evaluate?

I don’t remember the story from 2011, but very recently I did an analysis of MuleSoft, Google, AWS, Apigee, and WSO2. WSO2 came in first, and CA standards came in second.

What other advice do I have?

Follow CA documentation thoroughly.

Disclosure: My company has a business relationship with this vendor other than being a customer: We are CA Partners for Security Management products.
PeerSpot user
it_user502011 - PeerSpot reviewer
Senior Java Developer/ Solution Architect at a financial services firm with 501-1,000 employees
Real User
It provides a simple way to create REST APIs and easy integration with REST and SOAP service. It requires a lot of specific coding for medium-complexity use cases.
Pros and Cons
  • "It has its own language, which make it possible to design and implement the complete flow using existing services and databases, and to create and aggregate fine-and coarse-grained APIs."
  • "I feel there is a lot to improve in terms of providing plug-and-play functionalities, as at the moment it requires a lot of coding in their specific language for implementing a medium-complexity use case."

What is most valuable?

It provides a simple way to create REST APIs. It provides easy integration with REST and SOAP services. It has its own language, which make it possible to design and implement the complete flow using existing services and databases, and to create and aggregate fine-and coarse-grained APIs.

How has it helped my organization?

We have used it as the top layer in physical infrastructure architecture and made that available to mobile, iPad and desktop applications. Basically, it worked as a single point of contact for all applications via HTTP protocol as a communication channel. Underneath, it is aggregating a plethora of REST and SOAP services and connections to LDAP, AuthMinder, RiskMinder and SiteMinder for authorisation and authentication.

With it, we provided an enterprise solution for authentication and authorisation for all internal and external application in a quick and efficient manner using existing SOAP and REST services.

What needs improvement?

I feel there is a lot to improve in terms of providing plug-and-play functionalities, as at the moment it requires a lot of coding in their specific language for implementing a medium-complexity use case. It needs to improve the user interface for logging and monitoring. There is no test framework for the APIs, which is a setback. And with respect to providing an end-to-end API management solution, where the API will be charged per usage from the client, configuration is not that easy and straightforward.

For how long have I used the solution?

I have used it for more than a year.

What was my experience with deployment of the solution?

We had a lot of deployment issues, as it does not provide seamless, continuous integration and deployment to different environments.

What do I think about the scalability of the solution?

Not really, Performance wise it is quite competitive .

How are customer service and technical support?

Customer Service:

Satisfactory

Technical Support:

I would rate technical support as satisfactory.

Which solution did I use previously and why did I switch?

Previously, we chose to use CA-provided solutions (AuthMinder and RiskMinder), which includes (JSP-based) user interfaces. Also, because we have to make our own designs (RIA-JavaScript-based), that’s how it came into the picture.

How was the initial setup?

Initial setup wasn’t straightforward.

What about the implementation team?

We implemented it along with a vendor team. I would advise preparing an in-house team by providing it with a week or two of training, and then get an expert from CA for several months to provide the consultancy and solutions to the team and to resolve their issues.

What's my experience with pricing, setup cost, and licensing?

One of the reasons for choosing it was that we were already using CA products, such as SiteMinder. It provides easy integration with SiteMinder, and because both are CA products, we therefore expected better support.

Which other solutions did I evaluate?

Not really , as we were already using CA products like Siteminder , since layer 7 is also a CA product and provide seamless integration with the product thus we chose Layer 7 in first place .

What other advice do I have?

I would advise also evaluating Apigee API management if you are looking for an end-to-end API management solution. Otherwise, CA API Management is not a bad choice.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Layer7 API Management
December 2024
Learn what your peers think about Layer7 API Management. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
it_user558333 - PeerSpot reviewer
Leads System Engineer at a consultancy with 1,001-5,000 employees
Consultant
The logs help us troubleshoot. Easy to manage policies.

What is most valuable?

This product is easy to use. We are able to troubleshoot with the logs that it creates and it's easy to get people up to speed on it.

How has it helped my organization?

We use it for managing policies and that process is simple and easy to perform.

What needs improvement?

We'd like to see an updated migration tool. Right now, the migration process works but it is a little clunky because there's not a good tool for migrating it. It's an older version tool so the services need to be restarted every once in a while.

What do I think about the stability of the solution?

It's pretty stable. Once in a while we'll have an issue or we have to restart it but the product itself is very stable for us.

What do I think about the scalability of the solution?

I think it scales well. We've got a cluster going and we can increase the size if we have to so it works out well.

How are customer service and technical support?

I have only used technical support to consult about upgrades. They are very good. They always have answers when we have questions so it has worked out really well.

Which solution did I use previously and why did I switch?

We used Layer 7 before CA acquired it.

What other advice do I have?

I recommend this product because of how successful we've been with it.

The most important criteria for me when selecting a vendor is the quality of their support and technical staff. If they are able to help us, it makes it a lot easier.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Consultor de segurança at a tech company with 1-10 employees
Real User
Information Security Features Allow Our Developers to Focus on Just Writing the Support Code
Pros and Cons
  • "I work for an information security company. CA API Management is capable of using tokens for authorization to manage access control for the APIs."
  • "One specific feature that we need is the ability to authenticate directly to the server with API data. It's not complex nowadays. This is a feature that we need and CA doesn't have it."

What is our primary use case?

In my company, we use CA API Management for banks in the financial markets. Our primary use case is for the basic protection of the APIs. We also use the authentication feature.

How has it helped my organization?

One of the main ways that CA API Management has improved our company is that we do not require a lot of people to work in developing new security code when they are programming for the APIs. They leave all the responsibility to CA API Management. 

In this manner, our developers can focus on just writing the code and on important business.

What is most valuable?

I work for an information security company. CA API Management is capable of using tokens for authorization to manage access control for the APIs.

What needs improvement?

One improvement for CA API Management would be better integration with the web access console. Better integration of the web access console would be great.

One specific feature that we need is the ability to authenticate directly to the server with API data. It's not complex nowadays. This is a feature that we need and CA doesn't have it. 

CA API Management can't do the same authentication functionality with the APIs as the other competitive products in the marketplace.

For how long have I used the solution?

One to three years.

What do I think about the stability of the solution?

The stability of CA API Management is very good. We have very little problems with the solution. Just once, there were a couple of days that became filled up with logs of reporting information. Overall, CA API Management is certainly stable.

What do I think about the scalability of the solution?

We don't have any problems with scalability. We have only a few customers that have deployed it. We only use it for a total of 4 clients. We don't use it in all of our projects. We work with other technology. 

Our final customer maintains the CA API Management installation and only needs our contractors to make other new improvements.

How are customer service and technical support?

Technical support is okay. We have opened some cases and all of them were quickly solved.

Which solution did I use previously and why did I switch?

This was the first tool that we used for API Management.

How was the initial setup?

The initial setup is good. For our requirements, it fits our appliances. 

The initial deployment of the software was two hours, i.e. to have the API data up and running.

What about the implementation team?

We are a reseller company that makes the final setup for our customers. We always do the final installation for our clients.

What's my experience with pricing, setup cost, and licensing?

Our CA API Management license is for five years with no additional cost other than the standard licensing fees.

Which other solutions did I evaluate?

Nowadays, we are looking at IBM solutions because other customers required it of us.

What other advice do I have?

CA API Management is very helpful. I would rate the product an 8 out of 10. In my opinion, the features are all very good.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user760710 - PeerSpot reviewer
Development Manager API Management - Digital Technology Services at a energy/utilities company with 10,001+ employees
Vendor
Provides key, up to date information to our customer-facing engineers but ease of use needs improvement

What is most valuable?

It's a secure product that allows us to expose API and lock down to only those devices and individuals which have the verified rights to access.

How has it helped my organization?

  • Secure access to customer records – secured device, only access when in correct postal code area.
  • Provide key, up to date information to engineers when engaging with customers.

What needs improvement?

  • Ease of use
  • Ability of development and ops teams to expose and manage their own API

For how long have I used the solution?

30 months.

What do I think about the stability of the solution?

No issues with stability.

What do I think about the scalability of the solution?

Cost and licencing model restrictive for auto scaling.

How are customer service and technical support?

Seven out of 10. Not as focused on ensuring that the issues are fully resolved as I would like.

Which solution did I use previously and why did I switch?

No. Selected after extensive "beauty contest."

How was the initial setup?

Complex to set up and operate. Requires deep understanding of networks, security, as well as API management.

What's my experience with pricing, setup cost, and licensing?

Consider if you need this advanced tool to undertake simple API management. Costly solution which is designed for heavy duty and complex work.

Which other solutions did I evaluate?

Apigee.

What other advice do I have?

Consider if the product is needed – there are cheaper, less complex solutions out there.

Consultancy costs for CA should be considered – worth the money as it saves time (and therefore cost) with configuration.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user351495 - PeerSpot reviewer
Chief Engineer (R&D for VoIP, Networking and P2P) at a tech services company with 1,001-5,000 employees
Consultant
I used to use a proxy to publish APIs, and now we want to use the CA API gateway, as it's more advantageous. They need to fix a bug so that we can publish new APIs with a socket.

What is most valuable?

The published API is easy. We don’t have any idea how to create or add value to the API to aggregate security, and we want to add the CA API gateway.

How has it helped my organization?

The API gateway is a great solution.

What needs improvement?

In two months, we want a new API publishing system to be opened. We need them to have fixed the issues of the API gateway by then.

What was my experience with deployment of the solution?

We had no issues with deployment, but it's not a stable solution.

What do I think about the stability of the solution?

It's not stable. I want to publish new APIs with a socket, but it’s not stable enough for this. They need to fix this bug in order for it to be stable.

What do I think about the scalability of the solution?

We introduced it on triad, but we haven’t tested the scalability of it yet. We'll know more in the coming weeks as we test the system.

How are customer service and technical support?

We always consult with technical support.

Which solution did I use previously and why did I switch?

I used to use a proxy to publish APIs, and now we want to use the CA API gateway, as it's more advantageous.

How was the initial setup?

The initial setup was easy, but I had some issues with the software. I want them to simplify the upgrade method.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user882711 - PeerSpot reviewer
Solution Architect at a construction company with 1,001-5,000 employees
Real User
Standardizes our API deployment, improves security
Pros and Cons
  • "The Portal API helps us with deployments. It also helps to have a catalog of everything. The replication is also a critical feature for us. It helps to have a more robust architecture and makes our systems are highly available."
  • "The portal is not the most intuitive and the way things are displayed makes it difficult to find the information we need."

What is our primary use case?

Managing all of our APIs and the security around them.

How has it helped my organization?

  • Standardization of our API deployment
  • Improve security

What is most valuable?

The Portal API helps us with deployments. It also helps to have a catalog of everything.

The replication is also a critical feature for us. It helps to have a more robust architecture and makes our systems are highly available.

What needs improvement?

The portal is not the most intuitive and the way things are displayed makes it difficult to find the information we need. We never completely read the info. The way it's written does not make me want to read it.

For how long have I used the solution?

Three to five years.

What do I think about the stability of the solution?

Lately, we have had a replication problem, but it's possible the problem is on our side. We are still unsure.

What do I think about the scalability of the solution?

No issues with scalability.

How is customer service and technical support?

The technical support is fast and efficient.

How was the initial setup?

It was a complicated setup but we had help.

What other advice do I have?

You need a team to manage it.

Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
PeerSpot user
Buyer's Guide
Download our free Layer7 API Management Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Product Categories
API Management
Buyer's Guide
Download our free Layer7 API Management Report and get advice and tips from experienced pros sharing their opinions.