Skip to main content

Akamai WAF

This Integration is part of the Akamai WAF Pack.#

Use the Akamai WAF integration to manage common sets of lists used by various Akamai security products and features.

This is the modified version where a new command "akamai-update-network-list-elements" was added by the SA.

Configure Akamai WAF in Cortex#

ParameterRequired
Server URL (e.g., https://example.net)True
Client tokenFalse
Access tokenFalse
Client secretFalse
Client tokenFalse
Access tokenFalse
Client secretFalse
Trust any certificate (not secure)False
Use system proxy settingsFalse

Commands#

You can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

akamai-get-network-lists#


Returns a list of all network lists available for an authenticated user who belongs to a group.

Base Command#

akamai-get-network-lists

Input#

Argument NameDescriptionRequired
list_typeThe network list type by which to filter the results. Possible values are: IP, GEO.Optional
searchThe query by which to search for list names and list items.Optional
extendedWhen enabled, provides additional response data identifying who created and updated the list and when, and the network list’s deployment status in both STAGING and PRODUCTION environments. This data takes longer to provide. Possible values are: true, false. Default is true.Optional
include_elementsIf enabled, the response list includes all items. For large network lists, this may slow responses and yield large response objects. The default false value when listing more than one network list omits the network list’s elements and only provides higher-level metadata. Possible values are: true, false. Default is false.Optional

Context Output#

PathTypeDescription
Akamai.NetworkLists.Lists.NameStringThe network list name.
Akamai.NetworkLists.Lists.TypeStringThe network list type.
Akamai.NetworkLists.Lists.UniqueIDStringThe network list unique ID.
Akamai.NetworkLists.Lists.ElementCountStringThe number of network list elements.
Akamai.NetworkLists.Lists.CreateDateDateThe network list creation date.
Akamai.NetworkLists.Lists.CreatedByStringThe network list creator.
Akamai.NetworkLists.Lists.ExpeditedProductionActivationStatusStringThe expedited production activation status.
Akamai.NetworkLists.Lists.ExpeditedStagingActivationStatusStringThe expedited staging activation status.
Akamai.NetworkLists.Lists.ProductionActivationStatusStringThe production activation status.
Akamai.NetworkLists.Lists.StagingActivationStatusStringThe staging activation status.
Akamai.NetworkLists.Lists.UpdateDateStringThe date that the network list was updated.
Akamai.NetworkLists.Lists.UpdatedByStringThe last user that updated the network list.
Akamai.NetworkLists.Lists.ElementsStringThe elements in the network list.

akamai-get-network-list-by-id#


Gets a network list by the network list ID.

Base Command#

akamai-get-network-list-by-id

Input#

Argument NameDescriptionRequired
network_list_idThe network list ID.Required

Context Output#

PathTypeDescription
Akamai.NetworkLists.Lists.NameStringThe network list name.
Akamai.NetworkLists.Lists.TypeStringThe network list type.
Akamai.NetworkLists.Lists.UniqueIDStringThe network list unique ID.
Akamai.NetworkLists.Lists.ElementCountNumberThe number of network list elements.
Akamai.NetworkLists.Lists.CreateDateDateThe network list creation date.
Akamai.NetworkLists.Lists.CreatedByStringThe network list creator.
Akamai.NetworkLists.Lists.ExpeditedProductionActivationStatusStringThe expedited production activation status.
Akamai.NetworkLists.Lists.ExpeditedStagingActivationStatusStringThe expedited staging activation status.
Akamai.NetworkLists.Lists.ProductionActivationStatusStringThe production activation status.
Akamai.NetworkLists.Lists.StagingActivationStatusStringThe staging activation status.
Akamai.NetworkLists.Lists.UpdateDateStringThe network list update date.
Akamai.NetworkLists.Lists.UpdatedByStringThe last user who updated the network list.
Akamai.NetworkLists.Lists.ElementsStringThe elements in the network list.

akamai-create-network-list#


Creates a new network list. Supports TXT file upload for elements.

Base Command#

akamai-create-network-list

Input#

Argument NameDescriptionRequired
list_nameThe network list name.Required
list_typeThe network list type. Possible values are: IP, GEO.Required
elementsThe network list elements.Optional
entry_idThe War Room entry ID of the sample file.Optional
descriptionThe network list description.Optional

Context Output#

PathTypeDescription
Akamai.NetworkLists.Lists.NameStringThe network list name.
Akamai.NetworkLists.Lists.UniqueIDStringThe network list ID.
Akamai.NetworkLists.Lists.TypeStringThe network list type.
Akamai.NetworkLists.Lists.ElementCountNumberThe number of elements in the list.
Akamai.NetworkLists.Lists.ElementsStringThe elements in the list.

akamai-delete-network-list#


Deletes the specified network list.

Base Command#

akamai-delete-network-list

Input#

Argument NameDescriptionRequired
network_list_idThe ID of the network list to delete.Required

Context Output#

There is no context output for this command.

akamai-activate-network-list#


Activates a network list on the specified environment.

Base Command#

akamai-activate-network-list

Input#

Argument NameDescriptionRequired
network_list_idsA comma-separated list of network list IDs to activate. For example: list (list1,list2).Required
envThe environment type to activate the network list. Possible values are: STAGING, PRODUCTION.Required
commentA comment to be logged.Optional
notifyA comma-separated list of email addresses.Optional

Context Output#

There is no context output for this command.

akamai-add-elements-to-network-list#


Adds elements to the specified network list.

Base Command#

akamai-add-elements-to-network-list

Input#

Argument NameDescriptionRequired
network_list_idThe ID of the network in which to add elements.Required
entry_idThe War Room entry ID of the sample file.Optional
elementsA comma-separated list of elements to add to the network list.Optional

Context Output#

There is no context output for this command.

akamai-remove-element-from-network-list#


Removes elements from the specified network list.

Base Command#

akamai-remove-element-from-network-list

Input#

Argument NameDescriptionRequired
network_list_idThe ID of the network list from which to remove elements.Required
elementThe element to remove from the network list.Required

Context Output#

There is no context output for this command.

akamai-get-network-list-activation-status#


Gets the activation status of the specified network list.

Base Command#

akamai-get-network-list-activation-status

Input#

Argument NameDescriptionRequired
network_list_idsA comma-separated list of network list IDs for which to get the activation status. For example: (support list - list1,list2).Required
envThe environment type. Possible values are: PRODUCTION, STAGING.Required

Context Output#

PathTypeDescription
Akamai.NetworkLists.ActivationStatus.UniqueIDStringThe network list ID.
Akamai.NetworkLists.ActivationStatus.StagingStatusStringThe network list environment staging activation status.
Akamai.NetworkLists.ActivationStatus.ProductionStatusStringThe network list environment activation production status.

akamai-update-network-list-elements#


Updates list elements of a network list.

Base Command#

akamai-update-network-list-elements

Input#

Argument NameDescriptionRequired
network_list_idThe ID of the network list to update.Required
elementsComma-separated list of elements. Use BLANK to empty a list.Required

Context Output#

There is no context output for this command.

akamai-check-group#


Check an existing group within the context of your account.

Base Command#

akamai-check-group

Input#

Argument NameDescriptionRequired
checking_group_nameGroup Name.Optional

Context Output#

PathTypeDescription
Akamai.CheckGroupunknownGroup ID.
Akamai.CheckGroup.FoundunknownWas the group found?
Akamai.CheckGroup.groupNameunknownThe parent group name.
Akamai.CheckGroup.parentGroupIdunknownThe parent group ID.
Akamai.CheckGroup.groupIdunknownThe group ID.
Akamai.CheckGroup.checking_group_nameunknownGroup name.

akamai-create-group#


Create a new group under a parent GID.

Base Command#

akamai-create-group

Input#

Argument NameDescriptionRequired
group_pathThe group path separated with >.Required

Context Output#

There is no context output for this command.

akamai-create-enrollment#


Create a new enrollment.

Base Command#

akamai-create-enrollment

Input#

Argument NameDescriptionRequired
countryThe country code (two letter format) for the country where your organization is located. Default is US.Required
companyCompany.Required
organizational_unitOrganizational unit.Required
cityThe city of the admin contact.Required
contract_idContract ID.Required
certificate_typeCertificate type. Default is third-party.Optional
csr_cnCommon name.Required
admin_contact_address_line_oneAddress of the admin contact.Required
admin_contact_first_nameThe first name of the admin contact.Required
admin_contact_last_nameThe last name of the admin contact.Required
admin_contact_emailThe email address of the admin contact.Required
admin_contact_phoneThe phone number of the admin contact.Required
tech_contact_first_nameThe first name of the tech contact.Required
tech_contact_last_nameThe last name of the tech contact.Required
tech_contact_emailThe email address of the tech contact.Required
tech_contact_phoneThe phone number of the tech contact.Required
org_nameThe organization name.Required
org_countryThe organization country name.Required
org_cityThe organization city.Required
org_regionThe organization region.Required
org_postal_codeThe organization postal code.Required
org_phoneThe organization phone number.Required
org_address_line_oneThe organization address.Required
clone_dns_namesNetwork Configuration - Dns Name Settings - Clone DNS Names. Default is True.Optional
exclude_sansThird Party - Exclude Sans. Default is False.Optional
change_managementEnable this will stop CPS from deploying the certificate to the network. Default is False.Optional
network_configuration_geographyUse core to specify worldwide (includes China and Russia), china+core to specify worldwide and China, and 'russia+core` to specify worldwide and Russia. Default is core.Optional
raThe registration authority or certificate authority (CA) you want to use to obtain a certificate. Default is third-party.Optional
validation_typeValidation type, Either dv, ev, ov, or third-party. Default is third-party.Optional
enable_multi_stacked_certificatesEnable Dual-Stacked certificate deployment for this enrollment. Default is False.Optional
network_configuration_quic_enabledSet to true to enable QUIC protocol. Default is True.Optional
network_configuration_secure_networkSet the type of deployment network you want to use. Default is enhanced-tls.Optional
network_configuration_sni_onlySNI settings for your enrollment. Set to true to enable SNI-only for the enrollment. Default is True.Optional
sansMultiple sans adding into the Common name.Optional

Context Output#

PathTypeDescription
Akamai.EnrollmentstringEnrollment path.

akamai-list-enrollments#


List enrollments of a specific contract.

Base Command#

akamai-list-enrollments

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required

Context Output#

There is no context output for this command.

akamai-create-domain#


Create a domain with properties and domain controller (DC).

Base Command#

akamai-create-domain

Input#

Argument NameDescriptionRequired
domain_nameDomain name.Required
group_idGroup ID.Required

Context Output#

There is no context output for this command.

akamai-update-property#


Update a property for a specific domain.

Base Command#

akamai-update-property

Input#

Argument NameDescriptionRequired
domain_nameThe domain name to which the new property is added.Required
property_nameNew property name.Required
property_typeProperty type.Required
static_typeStatic type - "CNAME" or "A".Optional
static_serverStatic server.Optional
server_1Server 1.Optional
server_2Server 2.Optional
weight_1Weight 1.Optional
weight_2Weight 2.Optional
property_commentsGTM property comments.Optional
dc1_idData center ID 1.Optional
dc2_idData center ID 2.Optional

Context Output#

There is no context output for this command.

akamai-get-change#


Get the CPS code.

Base Command#

akamai-get-change

Input#

Argument NameDescriptionRequired
enrollment_pathEnrollment path.Required
allowed_input_type_paramCurrently supported values include change-management-info, lets-encrypt-challenges, post-verification-warnings, pre-verification-warnings, third-party-csr. Default is third-party-csr.Optional

Context Output#

PathTypeDescription
Akamai.ChangeunknownCertificate Signing Request (CSR).

akamai-update-change#


Update the certs and trust chains.

Base Command#

akamai-update-change

Input#

Argument NameDescriptionRequired
change_pathThe path of the changed certificate.Required
allowed_input_type_paramAllowed input type parameter. Default is third-party-cert-and-trust-chain.Optional
certificateThe updated certificate.Optional
trust_chainThe updated trust chain.Optional
key_algorithmType of encryption. Possible values are: RSA, ECDSA.Optional

Context Output#

There is no context output for this command.

akamai-get-enrollment-by-cn#


Get enrollment by common name.

Base Command#

akamai-get-enrollment-by-cn

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required
target_cnTarget common name.Required

Context Output#

PathTypeDescription
Akamai.EnrollmentunknownEnrollment.
Akamai.Enrollment.target_cnunknownTarget common name.

akamai-list-groups#


Lists groups of Akamai.

Base Command#

akamai-list-groups

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
Akamai.GroupunknownAkmai Group.

akamai-get-group#


Get group.

Base Command#

akamai-get-group

Input#

Argument NameDescriptionRequired
group_idGroup ID. Default is 0.Required

Context Output#

There is no context output for this command.

akamai-get-domains#


Get Google Tag Manager (GTM) domains.

Base Command#

akamai-get-domains

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
Akamai.DomainunknownDomains.

akamai-get-domain#


Get a specific GTM domain.

Base Command#

akamai-get-domain

Input#

Argument NameDescriptionRequired
domain_nameDomain name to get.Required

Context Output#

PathTypeDescription
Akamai.DomainunknownDomain.

akamai-create-datacenter#


Create a data center.

Base Command#

akamai-create-datacenter

Input#

Argument NameDescriptionRequired
domain_nameDomain Name.Required
dc_nameDomain controller name.Required
dc_countryCountry name. Default is US.Optional

Context Output#

There is no context output for this command.

akamai-clone-papi-property#


Clone a new PAPI property.

Base Command#

akamai-clone-papi-property

Input#

Argument NameDescriptionRequired
product_idID for a specific Akamai product.Required
property_nameProperty Manager API (PAPI) (Ion Standard) property name.Required
contract_idContract ID.Required
group_idConfiguration group ID.Required
property_idProperty Manager API (PAPI) (Ion Standard) property ID.Required
versionProperty version.Required
check_existence_before_createWhether to continue execution if an existing record is found without creating a new record. Default is yes.Required

Context Output#

PathTypeDescription
Akamai.PapiProperty.PropertyNameunknownPAPI (Ion Standard) property name.
Akamai.PapiProperty.PropertyIdunknownPAPI (Ion Standard) property ID.
Akamai.PapiProperty.AssetIdunknownPAPI (Ion Standard) property asset ID.

akamai-add-papi-property-hostname#


Add hostnames to the PAPI property.

Base Command#

akamai-add-papi-property-hostname

Input#

Argument NameDescriptionRequired
property_versionPAPI (Ion Standard) property version. Default is 1.Required
property_idPAPI (Ion Standard) property ID.Required
contract_idContract ID.Required
group_idConfiguration group ID.Required
validate_hostnamesValidate hostnames.Optional
include_cert_statusInclude the certificate status for the hostname.Optional
cname_fromURL of the common name.Required
edge_hostname_idEdge hostname ID.Required
sleep_timeSleep time in seconds between each iteration.Required

Context Output#

PathTypeDescription
Akamai.PapiProperty.EtagunknownETag for concurrency control.

akamai-new-papi-edgehostname#


Add a PAPI edge hostname.

Base Command#

akamai-new-papi-edgehostname

Input#

Argument NameDescriptionRequired
product_idID for a specific Akamai product.Required
contract_idContract ID.Required
group_idConfiguration group ID.Required
optionsComma-separated list of options to enable. mapDetails enables extra mapping-related information.Optional
domain_prefixURL of domain name.Required
domain_suffixURL of the partial domain name appended by Akamai.Required
ip_version_behaviorIP version. IPv4, IPv6, or IPv4 plus IPv6.Required
secureSSL secured URL.Optional
secure_networkSSL secured protocol options.Optional
cert_enrollment_idCertificate enrollment ID for the domain URL.Optional
check_existence_before_createWhether to continue execution if an existing record is found without creating a new record. Default is yes.Required

Context Output#

PathTypeDescription
Akamai.PapiProperty.EdgeHostnames.EdgeHostnameIdunknownEdge hostname ID.
Akamai.PapiProperty.EdgeHostnames.DomainPrefixunknownEdge hostname domain prefix URL.

akamai-get-cps-enrollmentid-by-cnname#


Get cps certificate enrollment ID by common name.

Base Command#

akamai-get-cps-enrollmentid-by-cnname

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required
cnnameURL of common name.Optional

Context Output#

PathTypeDescription
Akamai.Cps.Enrollment.EnrollmentIdunknownCertificate enrollment ID.
Akamai.Cps.Enrollment.CNunknownCertificate enrollment common name.

akamai-new-papi-cpcode#


Create a new PAPI CP code.

Base Command#

akamai-new-papi-cpcode

Input#

Argument NameDescriptionRequired
product_idID for specific Akamai product.Required
contract_idContract ID.Required
group_idConfiguration group ID.Required
cpcode_nameContent provider codes name.Required
check_existence_before_createWhether to continue execution if an existing record is found without creating a new record. Default is yes.Required

Context Output#

PathTypeDescription
Akamai.PapiCpcode.CpcodeIdunknownContent provider code ID.

akamai-patch-papi-property-rule-cpcode#


Patch PAPI property default rule with a CP code.

Base Command#

akamai-patch-papi-property-rule-cpcode

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required
group_idConfiguration group ID.Required
property_idPAPI (Ion Standard) property ID.Required
property_versionPAPI (Ion Standard) property version.Optional
validate_rulesWhether to validate rules.Optional
operationJSON patch operation. Add, Remove, Replace.Optional
pathDictionary path.Optional
cpcode_idContent provider code ID.Optional
nameContent provider code name.Optional

Context Output#

PathTypeDescription
Akamai.PapiProperty.EtagunknownETag for concurrency control.

akamai-patch-papi-property-rule-origin#


Patch PAPI property default rule with an origin.

Base Command#

akamai-patch-papi-property-rule-origin

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required
group_idConfiguration group ID.Required
property_idPAPI (Ion Standard) property ID.Required
property_versionPAPI (Ion Standard) property version.Required
validate_rulesWhether to validate rules.Required
operationJSON patch operation. Add, Remove, Replace.Required
pathDictionary path.Required
originvalue.Required
external_urlExternal URL FQDN.Required
gzip_compressionGzip compression.Optional
sleep_timeSleep time between each iteration.Required

Context Output#

PathTypeDescription
Akamai.PapiProperty.EtagunknownEtag for Concurrency Control.

akamai-activate-papi-property#


Activate a PAPI property.

Base Command#

akamai-activate-papi-property

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required
group_idConfiguration group ID.Required
property_idPAPI (Ion Standard) property ID.Required
networkSTAGING or PRODUCTION.Optional
notify_emailsNotification emails.Optional
property_versionPAPI (Ion Standard) property version.Optional
noteactivation note.Optional

Context Output#

PathTypeDescription
Akamai.PapiProperty.Staging.ActivationIdunknownStaging activation ID.
Akamai.PapiProperty.Production.ActivationIdunknownProduction activation ID.

akamai-clone-security-policy#


AppSec clone security policy.

Base Command#

akamai-clone-security-policy

Input#

Argument NameDescriptionRequired
config_idAppSec configuration ID.Required
config_versionAppSec configuration version.Required
create_from_security_policyBaseline security policy ID.Required
policy_nameNew security policy name.Required
policy_prefixSecurity policy ID prefix.Optional
check_existence_before_createWhether to continue execution if an existing record is found without creating a new record. Default is yes.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.Policy.PolicyNameunknownSecurity policy name.
Akamai.AppSecConfig.Policy.PolicyIdunknownSecurity policy ID.

akamai-new-match-target#


AppSec create match target.

Base Command#

akamai-new-match-target

Input#

Argument NameDescriptionRequired
config_idAppSec configuration ID.Required
config_versionAppSec configuration version.Required
policy_idSecurity policy ID.Required
match_typeWebsite.Required
hostnamesComma-separated list of hostname URLs.Required
bypass_network_listsComma-separated list of bypass networks.Required
file_pathsFile paths. Default is /*.Required
default_fileDefault is noMatch.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.Policy.PolicyNameunknownSecurity policy name.
Akamai.AppSecConfig.Policy.PolicyIdunknownSecurity policy ID.
Akamai.AppSecConfig.Policy.TargetIdunknownMatch target ID.

akamai-activate-appsec-config-version#


AppSec activate appsec configuration version.

Base Command#

akamai-activate-appsec-config-version

Input#

Argument NameDescriptionRequired
config_idAppSec configuration ID.Required
config_versionAppSec configuration version.Required
acknowledged_invalid_hostsDefault is N/A.Required
notification_emailsList of notification emails.Required
actionActivate.Required
networkSTAGING or PRODUCTION.Required
noteNote to describe the activity.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.Staging.ActivationIdunknownSecurity configuration staging activation ID.
Akamai.AppSecConfig.Production.ActivationIdunknownSecurity configuration production activation ID.

akamai-get-appsec-config-activation-status#


AppSec get appsec config activation status.

Base Command#

akamai-get-appsec-config-activation-status

Input#

Argument NameDescriptionRequired
activation_idSecurity configuration activation ID.Required
sleep_timeSleep time in seconds between each iteration.Required
retriesNumber of retries of the consistency check to be conducted.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.StagingunknownStaging Security Configration.
Akamai.AppSecConfig.ProductionunknownProduction Security Configration.

akamai-get-appsec-config-latest-version#


AppSec get appsec config latest version.

Base Command#

akamai-get-appsec-config-latest-version

Input#

Argument NameDescriptionRequired
sec_config_nameName of the security configuration.Required
sleep_timeNumber of seconds to wait before the next consistency check.Required
retriesNumber of retries of the consistency check to be conducted.Required
skip_consistency_checkDo not perform LatestVersion, Staging Version, Production Version consistency check.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.LatestVersionunknownSecurity configuration latest version number.

akamai-get-security-policy-id-by-name#


AppSec get security policy ID by name.

Base Command#

akamai-get-security-policy-id-by-name

Input#

Argument NameDescriptionRequired
policy_nameSecurity Policy Name.Required
config_idAppSec configuration ID.Required
config_versionAppSec configuration version.Required
is_baseline_policyWhether this is the baseline security policy.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.BasePolicyNameunknownBaseline security policy name.
Akamai.AppSecConfig.BasePolicyIdunknownBaseline security policy ID.
Akamai.AppSecConfig.Policy.PolicyNameunknownSecurity policy name.
Akamai.AppSecConfig.Policy.PolicyIdunknownBaseline security policy ID.
Akamai.AppSecConfig.IdunknownAppSec security configuration ID.

akamai-clone-appsec-config-version#


AppSec_clone appsec config version.

Base Command#

akamai-clone-appsec-config-version

Input#

Argument NameDescriptionRequired
config_idAppSec configuration ID.Required
create_from_versionAppSec configuration version.Required
rule_updateSpecifies whether the application rules should be migrated to the latest version. Possible values are: True, False. Default is True.Optional
do_not_cloneDo not clone to create a new version. Use in the test.Required

Context Output#

PathTypeDescription
Akamai.AppSecConfig.NameunknownAppSec configuration name.
Akamai.AppSecConfig.IdunknownAppSec Configration ID.
Akamai.AppSecConfig.NewVersionunknownAppSec Configration New Version.

akamai-patch-papi-property-rule-httpmethods#


Patch PAPI property rule HTTP methods.

Base Command#

akamai-patch-papi-property-rule-httpmethods

Input#

Argument NameDescriptionRequired
contract_idContract ID.Required
group_idGroup ID.Required
property_idProperty ID.Required
property_versionProperty Version.Optional
validate_rulesWhether to validate the Rules.Required
operationThe operation to execute.Required
pathThe path of the rule.Required
valueThe value of the HTTP Method in dictionary format.Required

Context Output#

PathTypeDescription
Akamai.PapiProperty.EtagunknownETag for concurrency control.

akamai-get-papi-property-activation-status-command#


Get PAPI property activation status until it is active.

Base Command#

akamai-get-papi-property-activation-status-command

Input#

Argument NameDescriptionRequired
activation_idIon property activation ID.Required
property_idIon property ID.Required
sleep_timeSleep time between retries.Required
retriesNumber of retires.Required

Context Output#

There is no context output for this command.

akamai-get-papi-edgehostname-creation-status-command#


Get PAPI edgehostname creation status command until it is created.

Base Command#

akamai-get-papi-edgehostname-creation-status-command

Input#

Argument NameDescriptionRequired
contract_idcontract ID.Required
group_idGroup id.Required
edgehostname_idEdge hostname ID.Required
optionsmapDetails.Required
sleep_timeSleep time between each iteration.Required
retriesNumber of retries.Required

Context Output#

There is no context output for this command.

akamai-acknowledge-warning-command#


Acknowledge the warning message for uploading the certs and trust chains of enrollments.

Base Command#

akamai-acknowledge-warning-command

Input#

Argument NameDescriptionRequired
change_pathThe path of the changed certificate.Required
allowed_input_type_paramEnum found as the last part of Change.allowedInput[].update hypermedia URL. Possible values are: change-management-ack, lets-encrypt-challenges-completed, post-verification-warnings-ack, pre-verification-warnings-ack. Default is post-verification-warnings-ack.Optional

Context Output#

There is no context output for this command.

akamai-modify-appsec-config-selected-hosts#


Update the list of selected hostnames for a configuration version.

Base Command#

akamai-modify-appsec-config-selected-hosts

Input#

Argument NameDescriptionRequired
config_idA unique identifier for each configuration.Required
config_versionA unique identifier for each version of a configuration.Required
hostname_listA list hostnames is used to modifying the configuration.Required
modeThe type of update you want to make to the evaluation hostname list. - Use "append" to add additional hostnames. - Use "remove" to delete the hostnames from the list. - Use "replace" to replace the existing list with the hostnames you pass in your request. Use "append" to add additional hostnames. Use "remove" to delete the hostnames from the list. Use "replace" to replace the existing list with the hostnames you pass in your request.Required

Context Output#

There is no context output for this command.

akamai-get-production-deployment#


Get Production Deployment.

Base Command#

akamai-get-production-deployment

Input#

Argument NameDescriptionRequired
enrollment_idThe enrollment id.Required

Context Output#

There is no context output for this command.

akamai-get-change-history#


Get change history.

Base Command#

akamai-get-change-history

Input#

Argument NameDescriptionRequired
enrollment_idThe enrollment id.Required

Context Output#

There is no context output for this command.

akamai-patch-papi-property-rule-siteshield#


Patch papi property default rule siteshield.

Base Command#

akamai-patch-papi-property-rule-siteshield

Input#

Argument NameDescriptionRequired
contract_idAkamai contract Identity.Required
group_idAkamai configuration group Identity.Required
property_idAkamai Ion Property Identity.Required
property_versionAkamai Ion Property Version Identity.Required
validate_rulesValidate the rule or not - true or false.Required
operationJson patch operation - add / delete / replace.Required
pathJson patch Rule path.Required
ssmapsiteshiled json format data.Required

Context Output#

There is no context output for this command.

akamai-update-appsec-config-version-notes#


Update application secuirty configuration version notes command.

Base Command#

akamai-update-appsec-config-version-notes

Input#

Argument NameDescriptionRequired
config_idThe ID of the application seucirty configuration.Required
config_versionThe version number of the application seucirty configuration.Required
notesThe notes need to be written into the application seucirty configuration version.Required

Context Output#

There is no context output for this command.

akamai-new-or-renew-match-target#


New match target if no existing found otherwise update the existing match target hostnames. If there are multiple match targets found, the first one in the list will be updated.

Base Command#

akamai-new-or-renew-match-target

Input#

Argument NameDescriptionRequired
config_idA unique identifier for each configuration.Required
config_versionA unique identifier for each version of a configuration.Required
match_typeThe type of the match target.Required
bypass_network_listsbypass network lists.Required
default_fileDescribes the rule to match on paths.Required
file_pathsContains a list of file paths.Required
hostnamesA list of hostnames that need to be added into match target.Required
policy_idSpecifies the security policy to filter match targets.Required

Context Output#

There is no context output for this command.

akamai-patch-papi-property-rule-generic#


Generic JSON patch command for Papi Property Default Rule.

Base Command#

akamai-patch-papi-property-rule-generic

Input#

Argument NameDescriptionRequired
contract_idA unique identifier for each configuration.Required
group_idA unique identifier for each group.Required
property_idA unique identifier for each Papi Property.Required
property_versionA unique identifier for each Papi Property Version.Required
validate_ruleswhether validate rule or not.Required
operationadd/replace/remove.Required
pathjson rule tree path for the default rule.Required
valuevalue to be operated against.Required
value_to_jsonwhether to convert value to json format. yes/no. Possible values are: yes, no.Optional

Context Output#

There is no context output for this command.

akamai-get-papi-property-rule#


get papi property rule json and dump into string.

Base Command#

akamai-get-papi-property-rule

Input#

Argument NameDescriptionRequired
contract_idA unique identifier for each configuration.Required
group_idA unique identifier for each group.Required
property_idA unique identifier for each Papi Property.Required
property_versionA unique identifier for each Papi Property Version.Required
validate_ruleswhether validate rule or not.Required

Context Output#

PathTypeDescription
Akamai.PapiProperty.DefaultRuleunknownPapi Property default rule.

akamai-acknowledge-pre-verification-warning#


acknowledge pre verification warning.

Base Command#

akamai-acknowledge-pre-verification-warning

Input#

Argument NameDescriptionRequired
change_pathThe path that includes enrollmentId and changeId.Required

Context Output#

There is no context output for this command.

akamai-get-papi-property-by-name#


Get PAPI property info without the default rule. To get the default rule, use the "get-papi-property-rule" command.

Base Command#

akamai-get-papi-property-by-name

Input#

Argument NameDescriptionRequired
contract_idUnique identifier for the contract.Required
property_nameName of the PAPI property.Optional
group_idUnique identifier for the group.Optional

Context Output#

There is no context output for this command.

akamai-list-papi-property-by-group#


Lists properties available for the current contract and group.

Base Command#

akamai-list-papi-property-by-group

Input#

Argument NameDescriptionRequired
contract_idUnique identifier for the contract.Required
group_idUnique identifier for the group.Required
context_pathCustom output context path, default is "PapiProperty.ByGroup". Default is PapiProperty.ByGroup.Optional

Context Output#

There is no context output for this command.

akamai-get-papi-property-by-id#


get papi property info by id without default rule. to get default rule, please use "get-papi-property-rule" command.

Base Command#

akamai-get-papi-property-by-id

Input#

Argument NameDescriptionRequired
contract_idUnique identifier of the contract.Required
group_idUnique identifier for the group.Required
property_idUnique identifier of the property.Required

Context Output#

There is no context output for this command.

akamai-new-papi-property-version#


Create a new property version based on any previous version. All data from the createFromVersion populates the new version, including its rules and hostnames.

Base Command#

akamai-new-papi-property-version

Input#

Argument NameDescriptionRequired
contract_idUnique identifier for the contract.Required
property_idUnique identifier for the property.Required
group_idUnique identifier for the group.Required
create_from_versionThe property version on which to base the new version.Required

Context Output#

There is no context output for this command.

akamai-list-papi-property-activations#


This lists all activations for all versions of a property, on both production and staging networks.

Base Command#

akamai-list-papi-property-activations

Input#

Argument NameDescriptionRequired
contract_idUnique identifier for the contract.Required
group_idUnique identifier for the group.Required
property_idUnique identifier for the property.Required

Context Output#

There is no context output for this command.

akamai-list-appsec-configuration-activation-history#


Lists the activation history for a configuration. The history is an array in descending order of submitDate. The most recent submitted activation lists first. Products: All.

Base Command#

akamai-list-appsec-configuration-activation-history

Input#

Argument NameDescriptionRequired
config_idUnique identifier for the contract.Required

Context Output#

There is no context output for this command.

akamai-list-papi-property-by-hostname#


Lists active property hostnames for all properties available in an account.

Base Command#

akamai-list-papi-property-by-hostname

Input#

Argument NameDescriptionRequired
hostnameFilter the results by cnameFrom. Supports wildcard matches with *.Required
networkNetwork of activated hostnames, either STAGING or PRODUCTION. Or leave it BLANK. Possible values are: STAGING, PRODUCTION.Optional
contract_idUnique identifier for the contract. contract_id and groupd_id need to be presented at the same time.Optional
group_idUnique identifier for the group. contract_id and groupd_id need to be presented at the same time.Optional

Context Output#

There is no context output for this command.

akamai-list-siteshield-map#


Returns a list of all Site Shield maps that belong to your account.

Base Command#

akamai-list-siteshield-map

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
Akamai.SiteShieldMapsListAkamai SiteShield Maps.

akamai-get-cps-enrollment-deployment#


Returns the certification/enrollment deployment status for specific a environment: production or staging.

Base Command#

akamai-get-cps-enrollment-deployment

Input#

Argument NameDescriptionRequired
enrollment_idUnique identifier of the enrollment on which to perform the desired operation. And it can be retrieved via the akamai-list-enrollments command.Required
environmentEnvironment where the certificate is deployed. Possible values are: production, staging.Optional

Context Output#

PathTypeDescription
Akamai.Cps.Enrollments.DeploymentDictionaryA collection of settings for the Akami CPS enrollments deployment.

Command example#

!akamai-get-cps-enrollment-deployment enrollment_id=111111

Context Example#

{
"Akamai": {
"Cps": {
"Enrollments": {
"Deployment": {
"ocspStapled": true,
"ocspUris": ["http://ocsp.example.com"],
"networkConfiguration": {
"geography": "core",
"mustHaveCiphers": "ak-akamai-2020q1",
"ocspStapling": "not-set",
"preferredCiphers": "ak-akamai-2020q1",
"quicEnabled": false,
"secureNetwork": "standard-tls",
"sniOnly": true,
"disallowedTlsVersions": [],
"dnsNames": [
"san2.example.com", "san1.example.com"
]},
"primaryCertificate": {
"certificate": "-----BEGIN CERTIFICATE-----\nMIID2 ... <sample - removed for readability> .... ZlSw==\n-----END CERTIFICATE-----",
"expiry": "2021-06-10T12:00:00Z",
"keyAlgorithm": "RSA",
"signatureAlgorithm": "SHA-256",
"trustChain": "-----BEGIN CERTIFICATE-----\nMIIDT ... <sample - removed for readability> .... JuAIQ=\n-----END CERTIFICATE-----"
},
"multiStackedCertificates": [
{
"certificate": "-----BEGIN CERTIFICATE-----\nMIID2 ... <sample - removed for readability> .... ZlSw==\n-----END CERTIFICATE-----",
"expiry": "2021-06-10T12:00:00Z",
"keyAlgorithm": "ECDSA",
"signatureAlgorithm": "SHA-256",
"trustChain": "-----BEGIN CERTIFICATE-----\nMIIDT ... <sample - removed for readability> .... JuAIQ=\n-----END CERTIFICATE-----"
}]
}}}}
}

akamai-list-cidr-blocks#


List all CIDR blocks for all services you are subscribed to. To see additional CIDR blocks, subscribe yourself to more services and run this operation again.

Base Command#

akamai-list-cidr-blocks

Input#

Argument NameDescriptionRequired
last_actionWhether a CIDR block was added, updated, or removed from service. You can use this parameter as a sorting mechanism and return only CIDR blocks with a change status of add, update, or delete. Note that a status of delete means the CIDR block is no longer in service, and you can remove it from your firewall rules. Possible values are: all, add, delete, update.Optional
effective_date_gtThe ISO 8601 date the CIDR block starts serving traffic to your origin. Ensure your firewall rules are updated to allow this traffic to pass through before the effective date. Expected format MM-DD-YYYY or YYYY-MM-DD.Optional

Context Output#

PathTypeDescription
Akamai.CidrBlocksListA list of CIDR blocks.

Command example#

!akamai-list-cidr-blocks last_action=add effective_date_gt=2021-02-21

Context Example#

{
"Akamai":{
"CdirBlocks": [{
"cidrId": 11111,
"serviceId": 9,
"serviceName": "PERF_ANALYTICS",
"cidr": "11.111.111.111",
"cidrMask": "/11",
"port": "11,111",
"creationDate": "2021-02-21",
"effectiveDate": "2021-02-21",
"changeDate": "2021-02-21",
"minIp": "11.111.111.111",
"maxIp": "11.111.111.111",
"lastAction": "add"}]
}}

akamai-update-cps-enrollment#


Updates an enrollment with changes. Response type will vary depending on the type and impact of change. For example, changing SANs list may return HTTP 202 Accepted since the operation requires new certificate and network deployment operations, and thus cannot be completed without a change. On the contrary, for example a Technical Contact name change may return HTTP 200 OK assuming there are no active changes and the operation does not require a new certificate. Reference: https://techdocs.akamai.com/cps/reference/put-enrollment Note: Depending on the type of the modification, additional steps might be required to complete the update. These additional steps could be carrying out a "renew" change by resubmitting the CSR, acknowledging the warnings raised then waiting for the certificate to be deployed into Production. However, these additional steps are not included in this command. You need to perform those steps once the update command is completed.

Base Command#

akamai-update-cps-enrollment

Input#

Argument NameDescriptionRequired
enrollment_idEnrollment on which to perform the desired operation. It can be retrieved via the akamai-list-enrollments command.Required
updatesThe modification(s) to the enrollment in the dict format. The possible modifications are: ra, validationType, certificateType, networkConfiguration, changeManagement, csr, org, adminContact, techContact, thirdParty, enableMultiStackedCertificates.Required
enrollmentEnrollment information in dict format. If provided, the script will not make another API call to get the enrollment information. If not provided, another API call will be issued to retrieve the enrollment information.Optional
allow_cancel_pending_changesWhether all pending changes are to be cancelled when updating an enrollment. Possible values are: true, false. Default is true.Optional
allow_staging_bypassWhether to bypass staging and push meta_data updates directly to the production network. Current change will also be updated with the same changes. Possible values are: true, false. Default is true.Optional
deploy_not_afterDon't deploy after this date (UTC). Sample: 2021-01-31T00:00:00.000Z.Optional
deploy_not_beforeDon't deploy before this date (UTC). Sample: 2021-01-31T00:00:00.000Z.Optional
force_renewalWhether to force certificate renewal for enrollment. Possible values are: true, false. Default is false.Optional
renewal_date_check_overrideWhether CPS will automatically start a change to renew certificates in time before they expire. Possible values are: true, false. Default is true.Optional
allow_missing_certificate_additionApplicable for Third Party Dual Stack Enrollment. Whether to update a missing certificate. Option supported from v10. Possible values are: true, false. Default is false.Optional

Context Output#

PathTypeDescription
Akamai.Enrollment.ChangesDictionaryAkamai enrollment changes.

Command example#

!akamai-update-cps-enrollment enrollment_id=111111 updates="{\"thirdParty\": {\"excludeSans\": \"false\"}}" deploy_not_after=2023-11-30T00:00:00Z deploy_not_before=2023-11-23T00:00:00Z

Context Example#

{
"Akamai":{
"Enrollment":{
"Changes": [{
"enrollment": "/cps/v2/enrollments/111111",
"id": "111111"
}]
}}}

akamai-update-cps-enrollment-schedule#


Updates the current deployment schedule.

Base Command#

akamai-update-cps-enrollment-schedule

Input#

Argument NameDescriptionRequired
enrollment_pathEnrollment path found in the pending change location field.Optional
enrollment_idEnrollment ID on which to perform the desired operation. The ID can be retrieved via the akamai-list-enrollments command.Optional
change_idChange ID on which to perform the desired operation. It can be retrieved via the akamai-list-enrollments command.Optional
deploy_not_afterThe time after when the change will no longer be in effect. This value is an ISO-8601 timestamp. (UTC) Sample: 2021-01-31T00:00:00.000Z.Optional
deploy_not_beforeThe time that you want the change to take effect. If you do not set this, the change occurs immediately, although most changes take some time to take effect even when they are immediately effective. This value is an ISO-8601 timestamp. (UTC) Sample: 2021-01-31T00:00:00.000Z.Required

Context Output#

PathTypeDescription
Akamai.Enrollment.ChangesDictionaryAkamai enrollment changes.

Command example#

!akamai-update-cps-enrollment-schedule deploy_not_before=2023-11-30T00:00:00Z enrollment_path=/cps/v2/enrollments/111111/changes/1111111

Context Example#

{
"Akamai":{
"Enrollment":{
"Changes": [{
"change": "/cps/v2/enrollments/111111/changes/1111111",
"changeId": "1111111",
"id": "111111"
}]
}}}

akamai-get-cps-change-status#


Gets the status of a pending change.

Base Command#

akamai-get-cps-change-status

Input#

Argument NameDescriptionRequired
enrollment_pathEnrollment path found in the pending change location field.Optional
enrollment_idThe enrollment ID on which to perform the desired operation. It can be retrieved via the akamai-list-enrollments command.Optional
change_idThe change for this enrollment on which to perform the desired operation. It can be retrieved via the akamai-list-enrollments command.Optional

Context Output#

PathTypeDescription
Akamai.Enrollments.Change.StatusDictionaryAkamai enrollments change status.

Command example#

akamai-get-cps-change-status enrollment_path=/cps/v2/enrollments/111111/changes/1111111

Context Example#

{
"Akamai":{
"Enrollments":{
"Change":{
"Status": {
"allowedInput": [
{
"info": "/cps/v2/enrollments/111111/changes/1111111/input/info/third-party-csr",
"requiredToProceed": true,
"type": "third-party-certificate",
"update": "/cps/v2/enrollments/111111/changes/1111111/input/update/third-party-cert-and-trust-chain"
}
],
"statusInfo": {
"deploymentSchedule": {
"notAfter": null,
"notBefore": "2023-11-30T00:00:00Z"
},
"description": "Waiting for you to upload and submit your third party certificate and trust chain.",
"error": null,
"state": "awaiting-input",
"status": "wait-upload-third-party"
}
}
}}}}

akamai-get-cps-enrollment-by-id#


Get an enrollment in CPS by enrollment id

Base Command#

akamai-get-cps-enrollment-by-id

Input#

Argument NameDescriptionRequired
enrollment_idEnrollment on which to perform the desired operation.Required

Context Output#

There is no context output for this command.

akamai-cancel-cps-change#


Cancels a pending change on CPS.

Base Command#

akamai-cancel-cps-change

Input#

Argument NameDescriptionRequired
change_idThe change for this enrollment on which to perform the desired operation. Default is 0. "change_path" is used. Default is 0.Required
enrollment_idEnrollment on which to perform the desired operation. Default is 0. "change_path" is used. Default is 0.Required
change_pathChange path on which to perform the desired operation. Sample: /cps/v2/enrollments/100000/changes/88888888. Note: change_path is not listed in the reference as a parameter. However it can be extracted directly from "list_enrollments_command". This should be the most common useage when generate RestAPI's URL.Optional
account_switch_keyFor customers who manage more than one account, this runs the operation from another account. The Identity and Access Management API provides a list of available account switch keys.Optional

Context Output#

There is no context output for this command.

akamai-list-dns-zone-recordsets#


Lists all record sets for this zone. It works only for PRIMARY and SECONDARY zones.

Base Command#

akamai-list-dns-zone-recordsets

Input#

Argument NameDescriptionRequired
zoneThe name of the zone.Required

Context Output#

PathTypeDescription
Akamai.EdgeDns.ZoneRecordSetsDictionaryDictionary of Edge DNS zone's recordsets

akamai-list-dns-zones#


List all zones that the current user has access to manage.

Base Command#

akamai-list-dns-zones

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
Akamai.EdgeDns.ZonesDictionaryDictionary of Edge DNS zones.

akamai-list-appsec-config#


Lists available security configurations. Products: All

Base Command#

akamai-list-appsec-config

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
Akamai.AppSecConfigAllListA list of dictionaries of all Application Security Configurations.

akamai-list-cps-active-certificates#


Lists enrollments with active certificates. Note that the rate limit for this operation is 10 requests per minute per account.

Base Command#

akamai-list-cps-active-certificates

Input#

Argument NameDescriptionRequired
contract_idSpecify the contract on which to operate or view.Required

Context Output#

PathTypeDescription
Akamai.Cps.Active.Certificates.Enrollmentsunknown