• Associate locations to a scheduled report configuration. You can now configure a scheduled report to show events based on a location or multiple locations. By default, scheduled reports are configured to show events based on all locations.

• View data and configuration settings available to a tenant administrator. If an ​SIA​ super administrator assigns the tenant administrator role, a Filter data by tenant administrator field now allows you to view data and settings available to a tenant administrator. After you specify a tenant administrator in the field and navigate ​SIA​, the filter shows configuration settings and event data based on the locations, policies, and lists the tenant administrator can manage.

• New tab names on the Activity page. The DNS tab is now called the DNS Summary tab, and the Proxy tab is now called the Proxy Summary tab.

In addition to selecting a specific date or date range, the calendar filter that appears on the Dashboard, Events, Activity, and Indicator Search pages now allows you to specify a start and end time in a 24-hour clock format. This enhancement filters data to show events and domain history changes that occurred within the specified time.

• Exception Lists. An ​SIA​ administrator can now create a list with the domains and IP addresses they want directed to the origin without Transport Layer Security (TLS) decryption or ​SIA​ protection. An exception list bypasses ​SIA​ Proxy. This feature allows your organization to maintain the privacy of users who access trusted websites with sensitive information. Like a custom list, you create an exception list and assign it to a policy configuration.

• Bypass action for Exception Lists. When you add an exception list to a policy, the bypass policy action is automatically assigned to the list. This action resolves requests to the origin IP address. If ​SIA​ proxy is enabled, the request is not decrypted with TLS. It is sent directly to the destination web server. While no event is logged on the Event Analysis page for bypassed traffic, domains are logged on the Network Traffic tab of the Activity page.

• Client Connector now called ​SIA​ Client. Client Connector is now called ​SIA​ Client. The tab on the Utilities page and the client configuration settings now refer to the new ​SIA​ Client name.

Additional threat information is now available in ​SIA​. Note this feature is currently in beta.

• Security templates now available. An ​SIA​ administrator can now apply a security template or a preset template to a policy configuration. This allows administrators to implement best practices when configuring policy actions. It also gives administrators a starting point to defining a policy.

  When creating or modifying a policy, you can select one of these templates:

  • Strict. Contains settings that block known and most suspected threat categories. This template applies settings that are a best practice for a policy.
  • Monitor-only. Logs and reports threats but it does not block them. The Monitor-only template is ideal for testing or assessing policy impact before using the Strict template. This template assigns the monitor policy action to all known and suspected threat categories.
  • Custom. Let’s you define policy actions for known and suspected threats.
    A security template defines settings for threat categories in the ​Akamai​ Security tab only.

• Updates to delegated and tenant access. A delegated administrator can now:

  • Add email address for communication emails and assign communication emails. A delegated administrator can assign these users to any communication email.

  • View Security Connector activity.

    A tenant administrator can now:

  • Add emails address for communication emails and configure these users to receive communication emails for alerts and system issues.

  • Schedule a report.

  • View and analyze DNS event data on the Dashboard, Event Analysis, and DNS activity pages.
    The data in a scheduled report and on these reporting pages are based on the locations the tenant administrator can access.

• Source IP now a dimension for DNS activity. On the DNS tab of the Activity page, you can now report the top source IP addresses that generated DNS requests. Source IP is now available as a dimension or data type in all DNS activity menus.

With Client Connector 2.1.0, administrators can now configure Client Connector to roll back to the previous approved version. Administrators can also allow end users to uninstall Client Connector on Windows machines.

• New Acceptable Use Policy (AUP) categories. New AUP categories are available for administrators to control access to content.

  These categories include:

  • Finance & Investing. Category for websites that allow users to manage finances and investments.
  • Healthcare. Category for websites related to human health.
  • IP Telephony. Category for websites that allow users to make phone calls through the Internet.

• Bypass action for AUP in beta. If ​SIA​ Proxy is enabled and your organization takes part in this beta, you can now select the bypass action for each AUP category or subcategory. The bypass action directs traffic to the origin IP address. It also bypasses the ​SIA​ proxy and TLS decryption.

• Tenant access now available. An ​SIA​ super administrator can now enable tenant access and assign the tenant administrator role. This feature can be used by Managed Service Providers (MSP) to restrict and separate access of individual customers.

  A tenant administrator can:

  • Create locations, policies, and custom lists
  • Manage assigned location, policies, and custom lists
  • View events and other reporting data based on the locations they can access

  A tenant administrator cannot view locations, policies, and custom lists they did not create. They also cannot view other configuration areas of ​SIA​ such as the Utilities page. In previous releases, this administrator was called a strict delegated administrator.

• New policy settings tab. A Settings tab is now available when creating or modifying a policy. This tab contains settings for ​SIA​ Proxy, inline payload analysis, browsing restrictions, and more. On the policy configuration page, these settings were previously part of the right pane that includes the policy name, description, and assigned locations.

• New user interface for a policy. A new user interface is now available for a policy configuration. Administrators can now more easily assign a policy action and the response that’s delivered to users.

  These changes apply:

  • For an ​Akamai​ security category and a list in a policy, separate menus are provided to assign an action, the response to users, and a security connector.

  • If you select the Block action, you can then select the block type in the Response to User menu. In this menu, you can select Error Page, a specific custom response, or if ​SIA​ Proxy is disabled, you can also select Refused Response. These settings allow you to apply the actions that were formerly called Block – Error Page, Custom – Response, and Block – DNS.

  • To assign a Security Connector, you select the Block action and the Error Page response. After this is done, you can select a security connector from the Security Connector menu. These settings allow you to apply the action that was formerly called Block – Sinkhole. If you don’t want to assign a Security Connector to an Error Page response, in the Security Connector menu, you can select None.

  • The Allow policy action is now available for custom lists and top-level domain (TLD) lists only.

  • You can apply the same policy settings to all known and suspected threats associated with an ​Akamai​ security category, a custom list, or a TLD list.

  For more information about configuring a policy, see the online help.

• Security Connector 2.5.0 now in beta. Security Connector version 2.5.0 is now in beta and available for upgrade or download. This version allows your organization to direct malicious HTTP and HTTPS requests to Security Connector. To try version 2.5.0, contact your ​Akamai​ representative.

If you previously installed version 2.0.4 on end-user machines, you can upgrade Client Connector to version 2.0.5 or allow end users to upgrade the software. This new version of Client Connector is also available for download in ​SIA​.

• New CSV files available for locations. On the Locations page, an administrator can now download a CSV file that lists all locations. An administrator can also now delete many locations in one operation by uploading a CSV that contains the locations they want to delete.

• Custom list assignment for delegated and strict delegated administrators. A super administrator can now assign custom lists to a delegated administrator or a strict delegated administrator.

  A delegated administrator can:

  • Create new custom lists

  • Manage the custom lists that are assigned to them

  • Associate these custom lists to a policy that they created or are allowed to manage

    A strict delegated administrator can perform these operations as well. However, they cannot view the custom lists that they do not have permission to manage.

• New user interface for scheduled reports. Administrators can now more easily create and manage settings associated with scheduled reports.

• Dynamic DNS for locations (limited availability). Location page now indicates when the dynamic DNS domain associated with a location configuration is invalid or does not resolve to a valid IP address. If an administrator or ​SIA​ user is configured to receive communication emails about system issues, an administrator receives an email that lists locations with invalid DNS entries. An administrator can also generate a CSV that shows locations with these errors.

  This feature continues to be in limited availability. For more information, contact your ​Akamai​ representative.