Register an API parameter with PII

Add a parameter with PII to a registered API.

Your firewall may be set to block any parameters with values that contain, or look like they contain, personally identifiable information (PII). If you expect your API to handle PII, add the parameters to your API definition. If your parameters are not included in your API definition, and they do contain PII, your firewall may trip and perform the action set in your security policy.

  1. Log into ​Akamai Control Center​.

  2. Go to > CDN > API definitions.

  3. Select your API and version.

  4. Go to API PII security settings > API parameters with PII.

  5. Click +.

  6. Select the API resource you want to inspect for PII.

  7. Select the API method. For example, select PUT to inspect PUT requests for your resource.

  8. Select the location where the PII is expected, Request body or Response body.

  9. Select the name of your parameter.

  10. Enter the type of personally Identifiable information you expect int the parameter.


    Only email, credit card, and Social Security numbers are currently supported.

  11. Save.