Akamai WAF SIEM

Use the Akamai WAF SIEM integration to retrieve security events from Akamai Web Application Firewall (WAF) service.

Analytics & SIEM · Akamai WAF SIEM

Configuration parameters

  • host — Server URL (e.g., https://akaa-xxxxxxxxxxxxxxxx-xxxxxxxxxxxxxxxx.luna.akamaiapis.net) (required)
  • clientToken — Client token
  • clienttoken_creds
  • accessToken — Access token
  • accesstoken_creds
  • clientSecret — Client secret
  • clientsecret_creds
  • configIds — Config IDs to fetch (required)
  • incidentType — Incident type
  • fetchTime — First fetch timestamp (<number> <time unit>, e.g., 12 hours, 7 days)
  • fetchLimit — Fetch limit (minimum is 20)
  • page_size — Akamai Page size
  • isFetch — Fetch incidents
  • insecure — Trust any certificate (not secure)
  • proxy — Use system proxy settings
  • incidentFetchInterval — Incidents Fetch Interval
  • eventFetchInterval — Events Fetch Interval
  • isFetchEvents — Fetch Events
  • should_skip_decode_events — Skip events decoding
  • longRunning — Long running instance
  • beta_page_size — Page Size - high performance mode
  • max_concurrent_tasks — Max allowed concurrent tasks

Commands (2)

  • akamai-siem-get-events

    Get security events from Akamai WAF.

  • akamai-siem-reset-offset

    Reset the last offset to start fetching from the first fetch timestamp, use this command when the instance is disabled.