Create an access key
Now that you know the authentication details associated with your cloud provider’s account, you can create an access key. An access key is a label that stores and makes use of these details once referred to in your property configurations.
Before you begin
- Go to .
- In Cloud Access Manager, click New access key.
Provide authentication and
security details as follows:
Provide a name for the access key.
You’ll use this name to search for this key in Cloud Access Manager and to refer to the authentication details store in this access key in the Origin Characteristics behavior of your property.Note: You can name your access key only once at the time of creation. With each update of the access key, the system adds a version number to the existing name.
- Contract: Select the contract that you want the access key to be available for.
method: Select the target authentication method that you
want to use this access key for.
You can choose Amazon Web Services or Interoperability Google Cloud Storage.Important: The authentication method of an access key must match the authentication method selected in the Origin Characteristics behavior of your property.
- Access key ID: Enter an access key identifier associated with your cloud provider’s account.
- Secret access key: Enter a secret paired with your access key identifier.
- Name: Provide a name for the access key.
In Network security,
specify the level of security of the properties for which you are activating the
- Deployment network: Select the type of security network where your properties are allowed to serve traffic:
- PCI-compliant. Enables the access key on the enhanced secure
network that serves PCI-compliant traffic. You can use this access key only
with property configurations whose Security
Options are set to Enhanced TLS.
See Deployment network in the list of key concepts and terms.Note: For this option to be available, your contract needs to support serving traffic with Enhanced TLS certificates. To set this option for your contract, contact your account representative.
Also, you need to provision an Enhanced TLS certificate for hostnames in a property for which you want a PCI-compliant access key to authorize requests.
- PCI-noncompliant. Enables the access key on the standard secure network that serves secure PCI-noncompliant traffic. If no Standard TLS certificate is present for your property hostnames, this option also supports serving HTTP traffic. You can use this access key with property configurations whose Security Options are set to Standard TLS ready or Enhanced TLS. See Deployment network in the list of key concepts and terms.
Enable if your certificate allows serving traffic on Akamai's China CDN and you want to use it with a property
configuration that has a certificate that allows serving traffic on the China
Property configurations on the PCI-noncompliant network serve traffic on the Russia CDN by default.
Enable if your certificate allows serving traffic on Akamai's Russia CDN.
This option is available only for property configurations that use Enhanced TLS certificates on the PCI-compliant network. Properties that use Standard TLS certificates allow serving traffic on the Russia CDN by default. Note that you can't serve traffic both in Russia and China with properties that use Enhanced TLS certificates.
Activating an access key takes up to 10 minutes, after which your access key is active on both staging and production networks. Once this is done, you can reference it in your properties.