Role-based access controls

Enable role-based access controls for ‚ÄčAkamai MFA‚Äč administrators in the Identity and Access Management application within ‚ÄčAkamai Control Center‚Äč.

When you have an account with ‚ÄčAkamai‚Äč, each contract admin and viewer have pre-configured roles that are commonly used for controlling purposes. The admin role has read and write access to the ‚ÄčAkamai MFA‚Äč application. The viewer role only has read access to the ‚ÄčAkamai MFA‚Äč application and cannot make configuration updates.

‚ÄčAkamai MFA‚Äč also lets you restrict access to resources and isolate particular workloads based on the role performed by the admin in the IT department. You can implement role-based access controls by assigning each of the MFA-specific admin roles to a certain type of resource.
With the Enterprise MFA User Manager role, you enable the administrator to configure and update user and group accounts.
With the Enterprise MFA Policy Manager role, you assign the administrator the privilege to create security policies.
With the Enterprise MFA Help Desk role, you can grant administrative permission to support users with access issues, for example, by generating bypass codes.

Pre-configured roles and permissions

These are pre-configured roles that you can assign in the Identity and Access Management (IAM) application within ‚ÄčAkamai Control Center‚Äč.

Preconfigured rolesRead or Write privileges
AdminHas read and write privileges to all ‚ÄčAkamai MFA‚Äč resources
ViewerHas read privileges to all ‚ÄčAkamai MFA‚Äč resources

MFA-specific roles and permissions

These are the MFA-specific roles that you can assign in the Identity and Access Management (IAM) application in ‚ÄčAkamai Control Center‚Äč.

These roles let you enforce granular control and separate administrative tasks, which increases system security.

RolesRead or Write privileges
Enterprise MFA User ManagerHas read and write privileges to users, groups, and user provisioning resources.
Has read-only privileges to the other ‚ÄčAkamai MFA‚Äč resources.
Enterprise MFA Policy ManagerHas read and write privileges to policy resources.
Has read-only privileges to the other ‚ÄčAkamai MFA‚Äč resources.
Enterprise MFA Help DeskHas read and write privileges to users and groups.
Has read-only privileges to the other ‚ÄčAkamai MFA‚Äč resources.

To learn more about the role configuration in IAM, see Roles.