On-premises network policies

Learn to configure hostname IP pair network policies.

To enable the on-premises network detection for EAA Client, the EAA IT administrator should first enable on-premises network in the identity provider that is in the advanced settings of the Akamai identity provider (IdP) which has the EAAClient settings enabled. In addition, they should configure Hostname IP pair network policy.

Hostname IP pair. Admin should configure a FQDN (fully qualified domain name) hostname and an IP Address in the identity provider’s advanced settings. The hostname should resolve in the trusted network to the mentioned IP only. If you do a nslookup (name server command line lookup tool) on the hostname inside the corporate network, you should obtain the IP address of the server. For example, if nslookup shows:

>nslookup corp.companyname.com
Server:127.0.0.1

Then the EAA IT administrator will need to enter for the hostname IP pair:

corp.companyname.com:127.0.0.1

as the hostname IP pair value to configure the trusted network policy.

You can provide up to four hostname IP pairs.

When the user is not in the corporate network, the hostname will resolve to a different IP address and therefore EAA Client will consider the user to be in the public network.

Also, if the user checks the Network Type inside the EAA Client Settings window, it is set to On Premise when the user satisfies the trusted network policy configured by the EAA IT administrator for the organization. If the policy is not satisfied, then the Network Type is set to Public.