Are you using Enhanced TLS?
If you need a high level of HTTPS security including PCI or FedRAMP compliance, Enhanced TLS is what you need.
You need to create a property file ("property") using the Property Manager Editor in Control Center. This property serves multiple purposes, including the following:
- You set up a "Property hostname to Edge hostname association" and associate your end-user-facing hostname with the Akamai Edge hostname. Requests to your property hostname are resolved to the Edge hostname, where an edge server reads and applies what's set in the property file. You select the HTTPS (Enhanced TLS) certificate to be used to secure this connection.
- You define the specific rules of match criteria and behaviors that determine how requests for content should be handled. Specifically for HTTPS connections, you need to properly configure the Origin Server behavior. You can do this using the "Default Rule," which applies to all requests. (This is recommended.)
Before you begin
You need an Enhanced TLS certificate. If you have the default certificate (limited availability) functionality added to your contract, you can create this certificate while setting up your property in Property Manager. Otherwise, you'll need to create one manually, using the CPS in Control Center before you can continue.
Set up the property for Enhanced TLS
- Set the Security Options to Enhanced TLS or Shared Cert.
- Apply your Enhanced TLS certificate, using the Property Hostnames functionality: