--- title: Configuring an application description: The application represents the protected API as a whole, including the virtual host, sideband client, and rules. By including the virtual host and sideband client, it allows PingAccess to route requests directed at the front-end name to the correct back-end resource. After you create the application and its root resource, you can add one or more rules to control access to the protected API. component: pingaccess version: 9.1 page_id: pingaccess:pingaccess_use_cases:pa_api_sideband_configuring_an_app canonical_url: https://docs.pingidentity.com/pingaccess/9.1/pingaccess_use_cases/pa_api_sideband_configuring_an_app.html revdate: February 6, 2023 section_ids: about-this-task: About this task steps: Steps --- # Configuring an application ## About this task The application represents the protected API as a whole, including the virtual host, sideband client, and rules. By including the virtual host and sideband client, it allows PingAccess to route requests directed at the front-end name to the correct back-end resource. After you create the application and its root resource, you can add one or more rules to control access to the protected API. Within the application, you can add one or more resources. Resources are specific components that require a different degree of security. You can apply different rules to a resource, letting you apply specific controls to portions of an application. This example procedure does not include resources. For information about adding resources to an application, see [Configuring resource ordering in PingAccess](../pingaccess_user_interface_reference_guide/pa_configuring_resource_ordering.html). For more information about this procedure, including optional steps that are not included here, see [Adding an application](../pingaccess_user_interface_reference_guide/pa_adding_an_app.html). ## Steps 1. Click **Applications**, then go to **Applications > Applications**. 2. Click **[icon: plus, set=fa]Add Application**. 3. In the **Name** field, enter a unique name for the application, up to 64 characters, including special characters and spaces. 4. In the **Context Root** field, enter the context root for the API. This represents the context at which all of the API endpoints are accessed at the site. The context root must meet the following criteria: * It must start with `/`. * It can contain additional `/` path separators. * It must not end with `/`. * It must not contain wildcards or regular expression strings. * The combination of the **Virtual Host** and **Context Root** must be unique. 5. From the **Virtual Host** list, select the virtual host you created. 6. In the **Application Type** section, select **API**. 7. In the **Destination** section, select **Sideband**, then select the client that is installed on the API gateway. 8. Click **Save**. 9. Click **Applications**, then go to **Applications > Applications**. 10. Expand the new application in the list and click the pencil icon ![pin1564006721753](_images/pin1564006721753.jpg). 11. Click the **Web Policy** tab. 12. Drag your rule from **Available Rules** onto the policy bar. 13. Click **Save**.