TrainingSupportCommunity

Use Akamai MFA

Suggest Edits

​Akamai​ MFA two-factor authentication

Enterprise Application Access (EAA) allows you to use Akamai MFA as a second-factor authentication (2FA) for an ​Akamai​ identity provider (IdP). With both Enterprise Application Access and ​Akamai​ MFA on the same contract, the users from all of EAA directories may be provisioned into ​Akamai​ MFA. This action is executed from the ​Akamai​ MFA service.

Integrate ​Akamai​ MFA with EAA

Prerequisite:
Enterprise Application Access ( EAA) and ​Akamai​ MFA must be available in the same contract.

  1. Generate your integration credentials in Akamai MFA.

  2. Configure Akamai MFA as a 2FA in Enterprise Application Access ​Akamai​ identity provider.

  3. Log in to Enterprise Center.

  4. In the Enterprise Center navigation menu, select Application Access > Identity & Users > Identity providers.

  5. Select your identity provider. Check if added the directory with your users to this identity provider.

  6. Select Settings > MFA enable IdP MFA policy.

  7. Select Akamai MFA as one of the MFA Factors.

  8. Paste the integration credentials: Integration ID, Signing Key, and API Host.

  9. Select Akamai MFA UserID attribute.
    It determines the attribute that is sent as the username in ​Akamai​ MFA. Choose one of the following:

    • Email
    • SAM account name
    • User Principal Name (UPN)
    • Domain/SAM account name

    This attribute must be the same as the Login Preference in the directory with your users associated with the identity provider. Otherwise you get an error Your MFA configuration has failed. when you login to access the application.

  10. Click Save.

  11. Deploy the identity provider.

  12. Assign the identity provider to one or more EAA applications.

    📘

    The identity provider must be assigned to at least one EAA application for ​Akamai​ MFA to be used.

  13. Deploy the application.

  14. Log in to the application through a web browser.

  15. Enter your first factor authentication like username, password or select the certificate.
    New users are redirected for PushMFA registration.

  16. Self-enroll in Akamai MFA. Install ​Akamai​ MFA mobile app on google android or iphone and choose in-line enrollment for your smartphone, phone, iPad or tablet.
    The user is redirected to the application to access the resource.

Updated 3 months ago

Did this page help you?