Layer7 API Management Room for Improvement

Ewan Sadie
API Technical Lead at Sanlam
The Portal lacks maturity. Since the move from Portal 3.x to 4.x, a lot of features were removed. It is slowly coming back. I can see a lot of changes are done in the "background" to decouple components and make it more flexible. Those changes are just not getting to the UI side quick enough. The CA Portal concept of multitenancy does not align with their other products (or how most people see it) and that caught us off guard. CA/Broadcom is addressing this though. I have seen an uptake in feature development since the Broadcom acquisition of CA. It seems that a lot of our concerns were taken up and are being addressed. My rating would have been better if it was not for the Portal. The Gateway I would give a 10 out of 10. For feature improvements, the way the Portal handles the security of APIs needs a total rework. Luckily, we could customise this layer to work for us but it would have been nice if the options were out-of-the-box. As the product set is very customisable, I would like to see an environment where customers could share and upload customised components or "assertions". View full review »
Venkatesh Vanigalla
Software Engineer at a tech vendor with 501-1,000 employees
Based on the method an API, we need to be able to access that particular API. They need a workflow for the API Developer Portal, where the process only allows requests to go to the correct person. The CA Mobile API Gateway (MAG) for mobiles has too much latency. View full review »
Sekar Purushothaman
Sr. Systems Engineer at a hospitality company with 1,001-5,000 employees
On the monitoring side, we need a better way to monitor it. CA has not given a clear understanding of what external tools we can use to do this. We also need a total dashboard functionality to see how many transactions are going through, where the problems are, etc. There's no out-of-the-box monitoring other than the dashboard, which doesn't give you very much. Their migration policies are also not the best out there. We just do an export and import of it, which is fairly simple, but they could have made it better. View full review »
Learn what your peers think about Layer7 API Management. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,901 professionals have used our research since 2012.
Atyab Tahir
GM - Head of Digital Transformation at a financial services firm with 10,001+ employees
This is not specific to CA's tool, but API tools in general. There are two schools of thought: There is the "Apigee" school of thought that says that we don't need hardware to implement security, and there's the "API Connect" school of thought which says some sort of an enterprise service bus would be critical to the success of the API management tool. I find this hardware reliance is a bit archaic. The biggest reason I would want to get an API management tool is to get rid of the hardware. If I have to have the hardware and put the tool on top of it, that makes it a bit cumbersome for us because the maintenance of the hardware, for any enterprise service bus, is in hundreds of thousands of dollars per year. It needs to go into virtualization. View full review »
Tanmoy Bandyopadhyay
Technology Analyst at Infosys Technologies Ltd
From the last version, they have added more dashboard support, but there is still a lot they need to improve. The thing is, on the chart you can set it to forty seconds or one minute. That's fine, but if you hold any request it should be clear on the graph. For instance, on the dashboard of the graph it should be written around it. It should say, this is the response time here, etc. In terms of monitoring, it's almost all covered. The interface can be improved, though. View full review »
Pradeep Bharadwaj
Computer Scientist at a tech company with 10,001+ employees
One area where it certainly needs to improve is the way it allocates requests, in terms of rate limiting. Let's say I have set the rate-limiting to 1000 requests per second and I have four nodes in a cluster. It divides the request into four, that is 250 per node. If I have a node-balancer in front which has the least connection mechanism it sends the first request to a node. It has to improve in terms of API rate-limiting. Also, there is no native Kafka connectivity. If they provided native Kafka connectivity, that would be good. View full review »
Moses Johnson
Lead Architect at a energy/utilities company with 1,001-5,000 employees
The entire lifecycle management approach needs improvement: from the API management, development, deployment, some of the settings around the quotas, and some security policy applications, etc. for the APIs. We found the Apigee platform a lot more robust in that area. View full review »
Aniket.karle
Layer7 API Developer at Allied Globetech
There are old algorithms that the tool does not support - and it shouldn't, in my opinion. But sometimes customers need old algorithms, from old use cases and old applications, migrated to the platform. At those times, there are hiccups that happen. It's a bit of a challenge to make the customer understand that we should not be going with these old applications. View full review »
Abhishek Valsangkar
Business Development - Alliances and Partnerships at a tech services company with 10,001+ employees
The CA API Management solution has good security features, but when it comes to being used in areas like enterprise integration, where it is being used as middleware for all the IT environments, that particular feature is quite limited. It doesn't support as many protocols as an industry standard, competing product should. View full review »
JeffreyKlein
Director Identity & Access Management at a financial services firm with 10,001+ employees
There is a thick client for configuration that is not as easy to use as you might like. So I would say the design and user experience, from an administrative standpoint, is a little clunky. There are some really very granular kinds of issues that I've found and they're more related to very specific technical components of the application itself. Aside from these individual complaints that are very bound up with our use cases, I don't have any specific recommendations. View full review »
Sampath Kumar Palati
Technical Consultant at a software R&D company with 501-1,000 employees
* The API Development tool can be made more user-friendly by providing folder properties. * Assertions for common functionalities (like mathematical operations, string manipulations, connecting to non-SQL). * Masking the user credentials entered in Identity Provider, JDBC based on user role * Analytics and reporting need to be made better and more user-friendly; add some custom reports both on the Developer Portal and API Gateway; exporting of analytics and an email facility. * Logging and tracking of changes done by users in the Developer Portal. View full review »
Rogerio Sachett
Consultor de segurança at a tech services company with 1-10 employees
One improvement for CA API Management would be better integration with the web access console. Better integration of the web access console would be great. One specific feature that we need is the ability to authenticate directly to the server with API data. It's not complex nowadays. This is a feature that we need and CA doesn't have it. CA API Management can't do the same authentication functionality with the APIs as the other competitive products in the marketplace. View full review »
Gary Sun
Technical Director at SoftPro
It is not user-friendly because you have to know so many programming languages. View full review »
SeniorTe947f
Senior Technology Architect at a tech services company with 10,001+ employees
The development toolkit used for creating APIs should be more online and user-friendly. Deployment and tracking could also be improved. Tools like Apigee provide a complete online experience along with RESTful APIs, to manage all activities. It is a very nice and user-friendly solution compared to CA. View full review »
SeniorDi80d8
Senior Director at a tech services company with 10,001+ employees
We did an assessment and are continuing with implementation. I would not say it's 100 percent perfect but, currently, all the features we anticipated using are working. The only issue we have is that we have to buy an APM license separately for end-to-end monitoring. That is something we are looking into. View full review »
Christian Villamizar Lamus
Experts in Integration Models at a consultancy with 5,001-10,000 employees
The portal is an important point in the lifecycle of the APIs. Right now, the portal lacks many features. We hope that the new version will have them and that there will be a quality jump, which is needed. View full review »
Tra231Chng098
Transformation and Change Management Leader at a logistics company with 1,001-5,000 employees
They should incorporate deeper monitoring features into the solution to make the offering more complete. Doing so would help to showcase traffic patterns and usage to better engage customers and partners proactively. It would also help with API management and capacity planning. View full review »
Architeca111
student at a tech services company with 1,001-5,000 employees
Cloud-native architecture of the product. View full review »
Wilmer Jesús González Pacheco
Arquitecto de Soluciones at Intergrupo
* This is a punctual need for the characteristics of the business or at the request of some partners: It is the use and configuration of VPNs, which in the current version is not enabled. * Expose system properties and other configurations via the GUI (Policy Manager). * Increase tools for manipulation of JSON messages. View full review »
Solutionbbbe
Solution Architect at a construction company with 1,001-5,000 employees
The portal is not the most intuitive and the way things are displayed makes it difficult to find the information we need. We never completely read the info. The way it's written does not make me want to read it. View full review »
Rofans Manao
IT Consultant at Entiis Pte Ltd
The product needs to keep up with newer trends even though customers might not be requesting it yet. For example, the usage of newer versions of Swagger and YAML format. View full review »
Benny Lam
Senior System Analyst at National Institute of Education
* Better GUI for the policy manager. * Needs better professional services in my country. * Better mobile features. * Better HA configuration. View full review »
Reviewer960
Sr. Tech lead at a manufacturing company with 10,001+ employees
We have experienced technical difficulties with the product in the past. View full review »
Learn what your peers think about Layer7 API Management. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,901 professionals have used our research since 2012.