Enterprise Application Access (EAA) updates.

​Akamai​ EAA new features

Clone Tunnel Applications. In this release you can clone your tunnel-type client-access applications with or without the Destinations associated with a different Identity Provider (IdP) or the same IdP. Cloning with the same IdP is a beta feature, and you must contact Akamai support to enable it.

Login Events Reports. EAA has added a new report called Login Events Report under Preset Access Reports. It provides details of date and time when a user logs into an identity provider and the group they belong to. It also provides the city, IP address of the user. In addition, you get login event details like whether the login was a success or a failure and the reason for it. Some of this information is provided by the older Login Failure Details report. We suggest that you use the Login Events Report, since it has additional information.

ACL updates. EAA is enhancing access control (ACL) enforcement by transitioning to exact value matching for Access Control types of Group, User, Method, Country, App Host, and App Protocol, replacing the current substring matching. This change will ensure more precise and predictable access control behavior. The update will be applied automatically when the Akamai Cloud Zone associated with the application is upgraded. Note that URL criteria will continue to support substring matching. This update will be available after December 20.

Fixed customer bugs

• If a user is locked and we recreate the user with the same credentials before the lockout duration expires for the Cloud Directory, the IdP gets unlocked correctly.
• After you reset the password of a locked user using the option “reset invite user” for the Cloud Directory, the user is unlocked correctly instead of staying locked. You must contact Akamai support to enable this capability to your contract.