Enterprise Threat Protector (ETP) now includes these features and enhancements:

Policy Deprecations. Based on updates to external threat feeds, ETP now alerts you to needed deprecations of policy actions that are defined for applications, categories, and operations. When you display the policy in the UI, a window indicates the needed deprecations. You can then confirm the deprecations and deploy the policy update.

Bypass Microsoft 365 Traffic. The Optimize Microsoft 365 Traffic option on the policy Settings tab has been changed to Bypass Microsoft 365 Traffic. Select this setting to bypass all Microsoft 365 traffic. NOTE: Any policy actions defined for Microsoft 365 applications, categories, or operations are ignored if you enable the Bypass Microsoft 365 Traffic field on the policy’s Setting tab.

Image and Video Manager March 2021 updates:

Ability to filter based on policy set and policy (dashboard)

When using the the Image and Video Manager dashboard, you can now filter by policy set, then filter by specific policy. 

Support AVIF image format - Experimental

Support for AVIF image format for derivative image format creation.

DataStream 2 Limited Availability release

We are pleased to announce the Limited Availability (LA) release of DataStream 2. During the beta testing period, we increased the reliability and capacity of DataStream 2, improved the UI experience, and introduced new features in response to customer feedback that will allow better control over raw access log streaming.

DataStream 2 uses Akamai’s globally distributed network of servers to capture performance logs at the edge. This allows you to monitor the CDN performance and health to gather valuable insights that let you boost digital experience for your users. Please contact your Akamai representative about migration possibilities.

Other updates:

• The Splunk connector supports raw event endpoints. See the DataStream 2 User Guide for details.

New features:

• Support for EdgeWorkers with AMD. Typically, you use Akamai Control Center and the Property Manager application to configure behaviors to optimize delivery. EdgeWorkers helps you do this by deploying JavaScript functions at the edge, instead. See the AMD user documentation for more details on EdgeWorkers and how to add it to your AMD configuration.

New features:

Enhanced Proxy Detection (EPD)

EPD enforces content rights management by blocking access to requests from malicious or anonymous VPNs and proxies. Akamai has collaborated with GeoGuard, a third-party agent which provides the categorized IP dataset, to provide our EPD solution. With this release, EPD has reached general availability status and several new features have been added. Complete details on the use of EPD and these new features can be found in the OD user documentation.

• Support for the Hosting Provider category. GeoGuard offers several categories of protection. Until this release, we didn’t support their “is_hosting_provider” category. This captures IP addresses associated with Cloud and CDN providers. This brought up concerns that Akamai-specific IP addresses may be included if this category was applied. This has been addressed with this release. This category is considered optional and it’s available with Advanced set as your Configuration Mode.
• Header Enrichment. This lets you include the “Akamai-EPD” header in requests to your origin. It tells you if a connecting IP address in a request is associated with an anonymous proxy. This can be especially helpful if you need to check the requester before providing access to your content.
• IPv6 support. We’ve extended the EPD functionality for IPv6 addresses, too. We’ve included best practices and support mitigation actions for all of GeoGuard’s EPD categories.

New features:

Enhanced Proxy Detection (EPD)

EPD enforces content rights management by blocking access to requests from malicious or anonymous VPNs and proxies. Akamai has collaborated with GeoGuard, a third-party agent which provides the categorized IP dataset, to provide our EPD solution. With this release, EPD has reached general availability status and several new features have been added. Complete details on the use of EPD and these new features can be found in the DD user documentation.

• Support for the Hosting Provider category. GeoGuard offers several categories of protection. Until this release, we didn’t support their “is_hosting_provider” category. This captures IP addresses associated with Cloud and CDN providers. This brought up concerns that Akamai-specific IP addresses may be included if this category was applied. This has been addressed with this release. This category is considered optional and it’s available with Advanced set as your Configuration Mode.
• Header Enrichment. This lets you include the “Akamai-EPD” header in requests to your origin. It tells you if a connecting IP address in a request is associated with an anonymous proxy. This can be especially helpful if you need to check the requester before providing access to your content.
• IPv6 support. We’ve extended the EPD functionality for IPv6 addresses, too. We’ve included best practices and support mitigation actions for all of GeoGuard’s EPD categories.

New features:

Enhanced Proxy Detection (EPD)

EPD enforces content rights management by blocking access to requests from malicious or anonymous VPNs and proxies. Akamai has collaborated with GeoGuard, a third-party agent which provides the categorized IP dataset, to provide our EPD solution. With this release, EPD has reached general availability status and several new features have been added. Complete details on the use of EPD and these new features can be found in the AMD user documentation.

• Support for the Hosting Provider category. GeoGuard offers several categories of protection. Until this release, we didn’t support their “is_hosting_provider” category. This captures IP addresses associated with Cloud and CDN providers. This brought up concerns that Akamai-specific IP addresses may be included if this category was applied. This has been addressed with this release. This category is considered optional and it’s available with Advanced set as your Configuration Mode.
• Header Enrichment. This lets you include the “Akamai-EPD” header in requests to your origin. It tells you if a connecting IP address in a request is associated with an anonymous proxy. This can be especially helpful if you need to check the requester before providing access to your content.
• IPv6 support. We’ve extended the EPD functionality for IPv6 addresses, too. We’ve included best practices and support mitigation actions for all of GeoGuard’s EPD categories.

Akamai MFA LA 29/03/2021 release

Akamai MFA, a workforce MFA service, helps customers to strengthen their Zero Trust security posture by securely establishing trust in a user before allowing access to protected applications and resources. Akamai MFA features a unique authentication factor, Akamai’s phish proof push, that combines the security provided by FIDO2 with the ease of use of the familiar push notification. Akamai MFA can be integrated with Akamai’s EAA IDP, Okta, Microsoft Azure AD (with ADFS), and Shibboleth identity providers as well as with UNIX platforms (for MFA with SSH) and Windows RDP servers for Windows Logon. Automated user provisioning can be accomplished using the SCIM framework. A full suite of authentication factors is supported to address any use case. Akamai MFA operates on the Akamai Intelligent Edge platform and is centrally managed using Enterprise Center on Akamai Control Center. See the Admin Guide and the User Guide to learn more.

Supported browsers and versions

• Firefox 87.0

• Google Chrome 89.0.4389.90

• Microsoft Edge 89.0.774.57

• Safari 14.0.3

Internet Explorer is not yet supported.

Supported mobile devices

• iOS 12 and above (iPad, iPhone, iPod Touch)

• Android 7 and above (phones and tablets)

Supported integrations

• ADFS integration supports Microsoft ADFS on Windows Server 2016.

• Integration with Akamai EAA IdP requires that both EAA and Akamai MFA are on the same contract.

• Okta integration supports Custom IdP factor authentication as an integration point. You have to contact Okta to enable this early access feature.

• Shibboleth integration supports Shibboleth version 4.0.1.

• Akamai MFA Unix PAM supports the following distribution versions: CentOS 5, 6, 7/8, Red Hat 5, 6, 7/8, Ubuntu 14, and 16/18/20.

• Akamai MFA Windows Logon plugin supports Windows 10 (64 bit) and Windows Server 2016.

Bug Fixes

• Fixed an Application Load Balancer (ALB) issue, which prevented reaching the correct origin configuration in the Property. Initially, this issue was not seen in the staging environment, but it was found in production.

March 2021 Release Notes

• All event handlers now support HTTP sub-requests. 
• A getHeaders() method is now available for the Request Object in the responseProvider() event handler. A getHeaders() method is also available for the httpResponse Object.
• We added an FAQs section to answer commonly asked questions about EdgeWorkers.
• We added Best practices for performance to help you maximize the performance of your custom JavaScript code.
• You can now deactivate an EdgeWorker version. The deactivation history of an EdgeWorker version is also available.
• When activating an EdgeKV-enabled EdgeWorkers code bundle the EdgeKV files are now validated. We’ve added error messages that describe which files or tokens are missing, invalid, or expired.