Use Akamai MFA
Akamai MFA two-factor authentication
Enterprise Application Access (EAA) allows you to use Akamai MFA as a second-factor authentication (2FA) for an Akamai identity provider (IdP). With both Enterprise Application Access and Akamai MFA on the same contract, the users from all of EAA directories may be provisioned into Akamai MFA. This action is executed from the Akamai MFA service.
Integrate Akamai MFA with EAA
Prerequisite:
Enterprise Application Access ( EAA) and Akamai MFA must be available in the same contract.
-
Generate your integration credentials in Akamai MFA.
-
Configure Akamai MFA as a 2FA in Enterprise Application Access Akamai identity provider.
-
Log in to Enterprise Center.
-
In the Enterprise Center navigation menu, select Application Access > Identity & Users > Identity providers.
-
Select your identity provider. Check if added the directory with your users to this identity provider.
-
Select Settings > MFA enable IdP MFA policy.
-
Select Akamai MFA as one of the MFA Factors.
-
Paste the integration credentials: Integration ID, Signing Key, and API Host.
-
Select Akamai MFA UserID attribute.
It determines the attribute that is sent as the username in Akamai MFA. Choose one of the following:- SAM account name
- User Principal Name (UPN)
Domain/SAM account name
This attribute must be the same as the Login Preference in the directory with your users associated with the identity provider. Otherwise you get an error
Your MFA configuration has failed.
when you login to access the application. -
Click Save.
-
Deploy the identity provider.
-
Assign the identity provider to one or more EAA applications.
The identity provider must be assigned to at least one EAA application for Akamai MFA to be used.
-
Deploy the application.
-
Log in to the application through a web browser.
-
Enter your first factor authentication like username, password or select the certificate.
New users are redirected for PushMFA registration. -
Self-enroll in Akamai MFA. Install Akamai MFA mobile app on google android or iphone and choose in-line enrollment for your smartphone, phone, iPad or tablet.
The user is redirected to the application to access the resource.
Updated 3 months ago