Accenture MDR Quick Start Guide for Akamai Enterprise Application Access

Owned by Dinesh Murugaiyan
Last updated: Feb 03, 2022
3 min read

This quick start guide will help Accenture MDR customers configure Akamai Enterprise Application Access to collect logs to the Log collection Platform (LCP).

This document includes the following topics:

Supported Versions

A list of supported versions is available in the Accenture Security Supported Products List document (Accenture_MDR_Supported_Products_List.xlsx) which can be found in Accenture MDR Portal.

Port Requirements

Table 1-1: Port requirements for LCP communication.

             Source

     Destination

      Port

    Description

LCP

Akamai EAA

443 (TCP)

Default port

Configuring Akamai Enterprise Application

An API client contains authentication tokens that secure the interactions between your application and the Akamai platform.

These instructions show you how to create an API client and configure credentials. After that, you can use Akamai APIs and the Akamai CLI to make calls on the Akamai network.

Pre-requisites :

Access to Akamai Control Center with the correct roles and permissions to create API clients and manage credentials
IDM: API Clients – User Access
IDM: API Clients – Admin Access

Create an authentication credential that contains the client token and client secret required to authenticate Akamai API

  1. Navigate to Control Tower , click on Identity and Access Management from the hamburger icon on the left.

 

2. Click on “New API Client for me“- highlighted above - and select quick from the API options to instantly create an API client and a credential for the Akamai APIs you can access.

 

3. You will then receive the credentials for the API client. Download it in a secure manner.

 

4. Click on “Edit API client“ button at the bottom to select API and necessary permissions. In API , choose “Select API“ radio button to see all available APIs.

 

5. Choose the API that you want and select the permission as READ - WRITE.

 

6. Click on SAVE .

The client’s name, description, and notification list populate for you in the Details section. You can change this information at any time. The credential and your client token appear in the Credentials section. The credential includes the client token and client secret you need to authenticate Akamai API requests.

For more information refer : https://techdocs.akamai.com/developer/docs/set-up-authentication-credentials

LCP Configuration Parameters

Table 1-2: The Akamai Enterprise Application Access event collector (API -5022) properties to be configured by MDR are given in table.

Property

Default Value

Description

Host

Custom Value

Akamai EAA API hostname.

Access Token

Custom Value

Access Token mentioned in the Pre-Installation Questionnaire (PIQ).

Access Token is used to authorize API client access for retrieving the security events.

Client Token

Custom Value

Client Token mentioned in the Pre-Installation Questionnaire (PIQ).

Client Token paired with Client Secret to make the client credentials.

Client Secret

Custom Value

Client Secret mentioned in the Pre-Installation Questionnaire (PIQ).

Client Secret paired with Client Token to make the client credentials.

Contract ID

Custom Value

Contract ID mentioned in the Pre-Installation Questionnaire (PIQ).

Contract ID is the ID in each EAA API request.

  

 

Legal Notice

Copyright © 2021 Accenture. All rights reserved.

Accenture, the Accenture Logo, and DeepSight Intelligence are trademarks or registered trademarks of Accenture in the U.S. and other countries. Other names may be trademarks of their respective owners.

The product described in this document is distributed under licenses restricting its use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Accenture and its licensors, if any.

THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. ACCENTURE SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

The Licensed Software and Documentation are deemed to be commercial computer software as defined in FAR 12.212 and subject to restricted rights as defined in FAR Section 52.227-19 "Commercial Computer Software - Restricted Rights" and DFARS 227.7202, et seq. "Commercial Computer Software and Commercial Computer Software Documentation," as applicable, and any successor regulations, whether delivered by Accenture as on premises or hosted services. Any use, modification, reproduction release, performance, display or disclosure of the Licensed Software and Documentation by the U.S. Government shall be solely in accordance with the terms of this Agreement.