Release notes
Back to All

Dec 18, 2025 — Akamai MFA Phone Security Key for mobile workflows, new Devices page, and Windows Logon security

about 12 hours ago

New features and enhancements

  • Phone Security Key
    • This update adds support for pairing the ​Akamai MFA​ app and the browser with a manual code, as an alternative to scanning a QR code. Users can now use this pairing method to authenticate with a phone security key on the same mobile device. This feature is only supported when using phone security keys without the ​Akamai MFA​ browser extensions. To get started, update your ​Akamai MFA​ mobile app to the latest version and enable the Without Browser Extension option under Policies > Authentication Factors > Phone security key.
  • Enterprise Center for ​Akamai MFA​
    • A new Devices page is now available in Enterprise Center, providing enhanced visibility and management options for authentication devices enrolled in ​Akamai MFA​ by your organization. Go to ​Akamai​ Control Center > Enterprise Center > Multi-factor Authentication > Devices to see the new page.
      Key capabilities include:
      • Centralized management of all authentication devices in your organization.
      • Status and details visibility for each device.
      • Filtering options by device type and status.
      • Ability to enable, disable, unassign, and delete devices.
      • Ability to add hardware tokens directly from the devices page.
      • CSV export for generating device inventory reports.
    • The previous 2000-row limit for user and device CSV exports has been removed. Exported CSV files now include the complete list of your users or devices.
  • Windows Logon plugin
    • ​Akamai MFA​ Windows Logon plugin 3.7.1.0 or later contains an important security enhancement for multi-user workstations. ​Akamai​ recommends upgrading to this version as soon as administratively feasible to ensure the security of these workstations. See Update your Windows Logon plugin to learn how to update.
    • Email devices are now supported for authentication.
  • ​Akamai MFA​ web flow
    • When an authentication session ends with a failure, ​Akamai MFA​ now shows a brief intermediate page before redirecting the user to the identity provider (IDP). This page explains that the authentication was unsuccessful, provides the session ID for easy copying, and lets the user continue to the IDP.

Fixed issues

  • Phone Security Key
    • Resolved an authentication failure which occurred with Use security key when unpaired.
  • Windows Logon plugin
    • Resolved an issue where running the plugin installer in repair mode would overwrite existing MFA user configuration, resulting in loss of saved user enrollment data on the workstation.

Known issues

  • Manual code enrollment
    • When enrolling a new device using a manual code while accessing the ​Akamai MFA​ enrollment page on the same device, the authentication prompt page may not always update to show a successful enrollment after returning from the ​Akamai MFA​ mobile app to the browser.
    • Workaround: Initiate a new authentication session after enrolling the device. The new authentication session will correctly show that the device is enrolled.