API Access ControlEdit online Use the local management interface to manage the API Access Control configuration Overview of the API Access ControlIBM® Verify Identity Access provides many capabilities which can be configured independently to protect a RESTful API.Storing the IBM Verify Identity Access operations for managing Access Control PoliciesThe IBM® Verify Identity Access administrator credentials are required for all of the API Access Control configuration tasks. Rather than providing them for each task individually they need to instead be stored once.Auditing the Verify Identity Access operations that are performed when managing API Access Control componentsTo view the Verify Identity Access operations that are performed when you are managing API Access Control components, use one of the following methods: Manage Access Control PoliciesIn the local management interface, go to Web > API Access Control > Policies. A list of all current policies is displayed.Manage Resource Servers and ResourcesIn the local management interface, go to Web > API Access Control > Resources. A list of all current reverse proxy instances is displayed in a tree view. To view the existing resource servers in each instance click the icon next to the instance. To view the existing resources for a resource server click the icon next to the resource server.Manage Cross-Origin Resource Sharing (CORS) PoliciesIn the local management interface, go to Web > API Access Control > CORS Policies. A list of all current CORS policies is displayed.Parent topic: Web Reverse Proxy administration