Set up Akamai MFA

There are a few requirements that you must meet before you can set up your ‚ÄčAkamai MFA‚Äč service.

Prerequisites

ūüďė

If you are implementing a caching solution in front of ‚ÄčAkamai MFA‚Äč, we would recommend that you do not cache the following paths:

<your-idp-url>/idp/profile/SAML2/Redirect/*

<your-idp-url>/idp/js/akamaimfa.js

Privileges

  • To perform any of the configuration steps, you must have the ‚ÄčAkamai‚Äč preconfigured Admin role.
  • To provision new users, you must have the Enterprise MFA User Manager role.
  • To set up ‚ÄčAkamai MFA‚Äč policies, you must have the Enterprise MFA Policy Manager role.

See Role-based access controls to learn more about the administrative roles in ‚ÄčAkamai MFA‚Äč.

Supported mobile devices

The following mobile device OS versions support the ‚ÄčAkamai MFA‚Äč mobile app:

  • iOS 13 and above (iPad, iPhone, iPod Touch)
  • Android 7 and above (phones and tablets)

Mobile devices that use other authentication methods such as SMS/email OTP as second factors don’t have to run those minimum supported software versions.

Set up your ‚ÄčAkamai MFA‚Äč service

Follow these steps to get your ‚ÄčAkamai MFA‚Äč service running:

  1. Provision user profiles by synchronizing your identity management system with ‚ÄčAkamai MFA‚Äč. Enabling communication between those two sources of user data allows you to redirect the IdP's authentication requests to ‚ÄčAkamai MFA‚Äč. See Sync your directory services with Akamai MFA to learn more.

  2. Protect your applications by integrating with ‚ÄčAkamai MFA‚Äč. See Add integrations to learn more.

  3. Define your policies. With policies, you can control access to your protected applications and ensure compliance with the industry standards and your enterprise security requirements. Depending on your needs, you can configure high-level policies as well as granular, user-specific rules, and associate them to users, groups, and applications. See Define policies to learn more.

  4. Enable users to self-enroll in the service. See Enable users to self-enroll to learn about the available enrollment methods.

  5. Deploy your ‚ÄčAkamai MFA‚Äč service. This stage should include planning for your deployment, the onboarding process for users, and the ‚ÄčAkamai MFA‚Äč service rollout. See Deploy your installation to learn more.


Did this page help you?