diff --git a/Istio authentication and authorization/auth-policy.yaml b/Istio authentication and authorization/auth-policy.yaml
new file mode 100644
index 0000000..8effa2e
--- /dev/null
+++ b/Istio authentication and authorization/auth-policy.yaml	
@@ -0,0 +1,13 @@
+apiVersion: authentication.istio.io/v1alpha1
+kind: Policy
+metadata:
+  name: auth-policy
+spec:
+  targets:
+  - name: ui
+  - name: um-api
+  origins:
+  - jwt:
+      issuer: "https://kdb454.auth0.com/"
+      jwksUri: "https://kdb454.auth0.com/.well-known/jwks.json"
+  principalBinding: USE_ORIGIN
diff --git a/Istio authentication and authorization/tls-stric.yaml b/Istio authentication and authorization/tls-stric.yaml
new file mode 100644
index 0000000..f0c4218
--- /dev/null
+++ b/Istio authentication and authorization/tls-stric.yaml	
@@ -0,0 +1,8 @@
+apiVersion: "security.istio.io/v1beta1"
+kind: "PeerAuthentication"
+metadata:
+  name: "default"
+  namespace: "istio-system"
+spec:
+  mtls:
+    mode: PERMISSIVE