App registrations for API called from 2 apps running on different tenants

I have an api which is called by two different applications. One application is external which uses B2C login and other application is internal using SSO login, both this applications calls the API.Both the web applications are on different tenants.Could someone provide directions on implementing Security using Microsoft identity web ( App registrations) .