Jun 12, 2023 ‚ÄĒ Device and Authentication Factors terminology updates

New features and enhancements

Device and Authentication Factors terminology updates. To improve clarity and ensure consistency throughout the ‚ÄčAkamai MFA‚Äč service, we have revised the terminology used for authentication factors and devices.

The following are the Authentication Factors sub-policy changes:

  • Push Enabled is now referred to as Push Notification
  • Push TOTP is now referred to as ‚ÄčAkamai MFA‚Äč TOTP
  • Phone call is now referred to as Phone call OTP
  • Hardware token is now referred to as Hardware token TOTP/HOTP
  • Third party authenticator as OTP device is now referred to as Third party authenticator OTP
  • Clientless Push (via SMS) is now referred to as Magic link (via SMS)
  • SMS Enabled is now referred to as SMS OTP

The following are the Authentication Factor filter changes in Authentication Events:

  • Push is now referred to as Push Notification
  • Phone call is now referred to as Phone call OTP
  • Phone security key is now referred to as FIDO2 phone security key
  • Push TOTP is now referred to as TOTP/HOTP
  • Clientless Push is now referred to as Magic link (via SMS)

The following are the Device Type filter changes in Authentication Events:

  • Push is now referred to as Mobile device
  • TOTP is now referred to as Hardware token

CIDR blocks for the ‚ÄčAkamai MFA‚Äč API host are now available in the documentation. You can use them to set up your firewall policies and increase the security posture of your UNIX or Windows servers running ‚ÄčAkamai MFA‚Äč plugins.

Known issues

  • Users using the Windows Logon plug-in and attempting to unlock the Windows locked screen may sometimes encounter errors entering just the username.
    Workaround: Users may try entering domain\username in the username field to unlock the screen.

  • Clicking the ‚ÄúHelp‚ÄĚ link present in the ‚ÄčAkamai MFA‚Äč authentication prompt may not open the link in the webview presented inside an application‚Äôs client, such as the WebEx client, that is used to authenticate with MFA for that application. As an alternative, the user may enter <<MFA_DOMAIN>>/help in a standard web browser and reach the same destination.

Supported browser versions

The following are the minimum browser versions that support the ‚ÄčAkamai MFA‚Äč browser extension:

  • Firefox 87.0

  • Google Chrome 89.0.4389.90

  • Microsoft Edge 89.0.774.57

  • Safari 14.0.3

Internet Explorer is not supported.

Supported mobile devices versions

The following mobile device OS versions support the ‚ÄčAkamai MFA‚Äč mobile app:

  • iOS 13 and above (iPad, iPhone, iPod Touch)

  • Android 7 and above (phones and tablets)

Supported Windows versions

The following Windows versions support the ‚ÄčAkamai MFA‚Äč Windows Logon plug-in:

  • Clients: Windows 10
  • Servers: Windows Server 2012 R1 Standard (legacy plug-in), Windows Server 2012 R2, 2016, and 2019