MODIFIED docs/external-id/customers/how-to-configure-akamai-integration.md

Modified by csmulligan on Jan 29, 2026 5:45 PM
📖 View on learn.microsoft.com

+24 / -16 lines changed

Commit: API update.

Changes:

Before

After

ms.service: entra-external-id
ms.subservice: external
ms.topic: how-to
ms.date: 10/21/2025
ms.author: cmulligan
ms.custom: it-pro
 
 
---
 
### Grant access to the Akamai API to perform actions
 
Create [EdgeGrid authentication credentials](https://techdocs.akamai.com/developer/docs/set-up-authentication-credentials) and note all the generated information (`client_secret`, `host`, `access_token`, `client_token`). You reuse these values later in the setup.
 
Additionally, update the **API restrictions** for the actions to the appropriate access level shown in the following table:
 
| Title | Description | Access level |
|----|----|----|
| [Microsoft Edge Diagnostics](https://developer.akamai.com/) | Microsoft Edge Diagnostics | READ-WRITE |
| [Property Manager (PAPI)](https://developer.akamai.com/api/luna/papi/overview.html) | Property Manager (PAPI). PAPI requires access to Microsoft Edge Hostnames. Edit your authorizations to add HAPI to your API Client. | READ-ONLY |

ms.service: entra-external-id
ms.subservice: external
ms.topic: how-to
ms.date: 01/29/2026
ms.author: cmulligan
ms.custom: it-pro
 
 
---
 
## Verify Akamai WAF in External ID
 
After completing the configuration steps, verify that Akamai WAF is protecting your external tenant by connecting the authentication credentials to the WAF configuration.
 
   :::image type="content" source="media\how-to-configure-akamai-integration\choose-waf-provider.png" alt-text="Screenshot of the choose WAF provider page.":::
 
6. Create an Akamai account. If you don't have an account yet, create and purchase one in the [Security Store](https://securitystore.microsoft.com/solutions/akamai-technologies.akamai_wapplusion_public). 
7. To grant access to the Akamai API to perform actions, create [EdgeGrid authentication credentials](https://techdocs.akamai.com/developer/docs/set-up-authentication-credentials) and note all the generated information (`client_secret`, `host`, `access_token`, `client_token`). You reuse these values later in the setup process.
 
Additionally, update the **API restrictions** for the actions to the appropriate access level shown in the following table:

MODIFIED docs/identity/devices/manage-device-identities.md

Modified by Diana Richards on Jan 29, 2026 3:12 PM
📖 View on learn.microsoft.com

+4 / -3 lines changed

Commit: fixing custom note markdown

Changes:

Before

After

 
`id,deviceId,displayName,accountEnabled,operatingSystem,operatingSystemVersion,trustType(joinType),mdm,securitySettingsManagement,isCompliant,registrationDateTime,approximateLastSignInDateTime,owner,upnName`
 
Please note, trustType is where JoinType can be determined. A common translation would be as follows
AzureAD -> Microsoft Entra joined
Workplace -> Microsoft Entra registered
 
The following filters can be applied for the export task:

 
`id,deviceId,displayName,accountEnabled,operatingSystem,operatingSystemVersion,trustType(joinType),mdm,securitySettingsManagement,isCompliant,registrationDateTime,approximateLastSignInDateTime,owner,upnName`
 
>[!Note]
>trustType is where JoinType can be determined. A common translation is:
>- AzureAD -> Microsoft Entra joined
>- Workplace -> Microsoft Entra registered
 
The following filters can be applied for the export task:
 

MODIFIED docs/includes/secure-recommendations/25406.md

Modified by Jay on Jan 29, 2026 10:56 PM
📖 View on learn.microsoft.com

+3 / -3 lines changed

Commit: Update links and dates in secure recommendations docs

Changes:

Before

After

author: HULKsmashGithub
ms.service: entra-id
ms.topic: include
ms.date: 01/28/2026
manager: dougeby
ms.custom: Network-Secure-Recommendation
# minimumlicense: Entra_Premium_Internet_Access
- Threat actors can use compromised accounts to blend with typical user behavior and access external resources without triggering security alerts based on user context, device compliance, or location.
 
**Remediation action**
- Enable the Internet Access forwarding profile to route traffic through the Secure Web Gateway. For more information, see [How to manage the Internet Access traffic forwarding profile](../../global-secure-access/how-to-manage-internet-access-profile.md).
- Assign users and groups to the Internet Access profile to limit traffic forwarding to specific users. For more information, see [Global Secure Access traffic forwarding profiles](../../global-secure-access/concept-traffic-forwarding.md).

author: HULKsmashGithub
ms.service: entra-id
ms.topic: include
ms.date: 01/29/2026
manager: dougeby
ms.custom: Network-Secure-Recommendation
# minimumlicense: Entra_Premium_Internet_Access
- Threat actors can use compromised accounts to blend with typical user behavior and access external resources without triggering security alerts based on user context, device compliance, or location.
 
**Remediation action**
- Enable the Internet Access forwarding profile to route traffic through the Secure Web Gateway. For more information, see [How to manage the Internet Access traffic forwarding profile](/entra/global-secure-access/how-to-manage-internet-access-profile).
- Assign users and groups to the Internet Access profile to limit traffic forwarding to specific users. For more information, see [Global Secure Access traffic forwarding profiles](/entra/global-secure-access/concept-traffic-forwarding).

MODIFIED docs/includes/secure-recommendations/25408.md

Modified by Jay on Jan 29, 2026 10:56 PM
📖 View on learn.microsoft.com

+2 / -2 lines changed

Commit: Update links and dates in secure recommendations docs

Changes:

Before

After

author: HULKsmashGithub
ms.service: entra-id
ms.topic: include
ms.date: 01/28/2026
manager: dougeby
ms.custom: Network-Secure-Recommendation
# minimumlicense: Entra_Premium_Internet_Access
 
**Remediation action**
Implement granular internet access controls for your organization based on website categorization.
- [How to configure Global Secure Access web content filtering](../../global-secure-access/how-to-configure-web-content-filtering.md)

author: HULKsmashGithub
ms.service: entra-id
ms.topic: include
ms.date: 01/29/2026
manager: dougeby
ms.custom: Network-Secure-Recommendation
# minimumlicense: Entra_Premium_Internet_Access
 
**Remediation action**
Implement granular internet access controls for your organization based on website categorization.
- [How to configure Global Secure Access web content filtering](/entra/global-secure-access/how-to-configure-web-content-filtering)

MODIFIED docs/includes/definitions/entra-offerings.md

Modified by Shannon Leavitt on Jan 29, 2026 9:52 PM
📖 View on learn.microsoft.com

+2 / -2 lines changed

Commit: Update docs/includes/definitions/entra-offerings.md

Changes:

Before

After

**Microsoft Entra ID P2** - Microsoft Entra ID P2 is available as a standalone product. It is also included with the following offers for enterprise customers:
 
- Microsoft 365 E5
- Microsoft Defender Suite (formerly M365 E5 Security)
- Microsoft Defender Suite FLW
- Microsoft Defender + Purview Suite FLW
- Enterprise Mobility + Security E5
 
Entra ID P2 is also included in Microsoft Defender Suite for M365 Business Premium and Microsoft Defender and Purview Suites for M365 Business Premium for small to medium businesses.
 
**Microsoft Entra Suite** - The suite combines Microsoft Entra products to secure access for your employees. It allows administrators to provide secure access from anywhere to any app or resource whether cloud or on-premises, while ensuring least privilege access. A Microsoft Entra ID P1 subscription is required. The Microsoft Entra suite includes five products:
 

**Microsoft Entra ID P2** - Microsoft Entra ID P2 is available as a standalone product. It is also included with the following offers for enterprise customers:
 
- Microsoft 365 E5
- Microsoft Defender Suite (formerly Microsoft 365 E5 Security)
- Microsoft Defender Suite FLW
- Microsoft Defender + Purview Suite FLW
- Enterprise Mobility + Security E5
 
Entra ID P2 is also included in Microsoft Defender Suite for Microsoft 365 Business Premium and Microsoft Defender and Purview Suites for Microsoft 365 Business Premium for small to medium businesses.
 
**Microsoft Entra Suite** - The suite combines Microsoft Entra products to secure access for your employees. It allows administrators to provide secure access from anywhere to any app or resource whether cloud or on-premises, while ensuring least privilege access. A Microsoft Entra ID P1 subscription is required. The Microsoft Entra suite includes five products:
 

MODIFIED docs/global-secure-access/scripts/powershell-get-token.md

Modified by Matthew Levy on Jan 29, 2026 11:32 AM
📖 View on learn.microsoft.com

+1 / -1 lines changed

Commit: Fix formatting in PowerShell token retrieval script

Changes:

Before

After

Write-Output "Access Token that you acquired is available in C:\token.txt. "
Write-Output "Please ensure no additional spaces are introduced when copying token to marketplace input form. Introducing spaces can change the token and can cause failures"
 
} else {
    Write-Host "The required module is not made available at path: $folderPath"
	Write-Host "This could be related to left over state from previous installation of connector on this machine."
	Write-Host "You can try to go to c:\temp\ and double click the MicrosoftEntraPrivateNetworkConnectorInstaller.exe file. Click Uninstall if visible. This can clean the state. "

Write-Output "Access Token that you acquired is available in C:\token.txt. "
Write-Output "Please ensure no additional spaces are introduced when copying token to marketplace input form. Introducing spaces can change the token and can cause failures"
 
else {
    Write-Host "The required module is not made available at path: $folderPath"
	Write-Host "This could be related to left over state from previous installation of connector on this machine."
	Write-Host "You can try to go to c:\temp\ and double click the MicrosoftEntraPrivateNetworkConnectorInstaller.exe file. Click Uninstall if visible. This can clean the state. "

📋 Microsoft Entra Documentation Changes

📊 Summary

📝 Modified Documentation Files