Publisher: Robert Drouin
Connector Version: 2.1.0
Product Vendor: Akamai
Product Name: Network Lists
Product Version Supported (regex): ".*"
Minimum Product Version: 6.0.2
The WAF API allows you to manage a common set of lists for use in various Akamai security products such as Kona Site Defender, Web App Protector, and Bot Manager
The Network Lists API allows you to manage a common set of lists for use in various Akamai security products such as Kona Site Defender, Web App Protector, and Bot Manager. Network lists are shared sets of IP addresses, CIDR blocks, or broad geographic areas. Along with managing your own lists, you can also access read-only lists that Akamai dynamically updates for you.
The app uses HTTP/ HTTPS protocol for communicating with the Akamai WAF server. Below are the default ports used by Splunk SOAR.
| Â Â Â Â Â Â Â Â Service Name | Transport Protocol | Port |
|---|---|---|
| Â Â Â Â Â Â Â Â http | tcp | 80 |
| Â Â Â Â Â Â Â Â https | tcp | 443 |
The below configuration variables are required for this Connector to operate. These variables are specified when configuring a Network Lists asset in SOAR.
| VARIABLE | REQUIRED | TYPE | DESCRIPTION |
|---|---|---|---|
| base_url | required | string | Base URL for the API. This URL is given to you when you setup the API Client in the Akamai Control Center. e.g. https://akaa-WWWWWWWWWWWW.luna.akamaiapis.net |
| access_token | required | password | Access Token for the API |
| client_token | required | password | Client Token for the API |
| client_secret | required | password | Client Secret for the API |
test connectivity - Validate the asset configuration for connectivity using the supplied configuration
list networks - Get a network list
get network - Gets a network list's most recent syncPoint version
create network - Create a new network list
delete network - Removes a network list
update network - Update the network list items and properties
add element - Adds the specified element(s) to a list
remove element - Remove the specified element(s) from the list
activate network - Activate the most recent syncPoint version of a network list in either the STAGING or PRODUCTION environment
activation status - Shows a network list activation status on either the STAGING or PRODUCTION environment
activation snapshot - Gets a version of a network list
activation details - Provides detailed status for a given activation
list siteshields - Get akamai site shields ip ranges
Validate the asset configuration for connectivity using the supplied configuration
Type: test
Read only: True
No parameters are required for this action
No Output
Get a network list
Type: investigate
Read only: True
List all network lists available for an authenticated user who belongs to a group, optionally filtered by listType or based on a search string. For extended parameter, when enabled, provides additional response data identifying who and when the lists were created and updated, and the network list's deployment status in both STAGING and PRODUCTION environments. For includeelements parameter, if enabled, the response list includes all items. For large network lists, this may slow responses and yield large response objects. Results appear within the networkLists array, which might be empty if no network lists are available to the client.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| search | optional | Only list items that match the specified substring in any network list's name or list of items | string | |
| extended | optional | When enabled, provides additional response data (Default: false) | boolean | |
| includeelements | optional | If enabled, the response list includes all items (Default: false) | boolean |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.search | string | ||
| action_result.parameter.extended | boolean | True False | |
| action_result.parameter.includeelements | boolean | True False | |
| action_result.data.*.networkLists.*.name | string | ||
| action_result.data.*.networkLists.*.networkListType | string | ||
| action_result.data.*.networkLists.*.elementCount | numeric | ||
| action_result.data.*.networkLists.*.list | string | ip |
|
| action_result.data.*.networkLists.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.networkLists.*.type | string | ||
| action_result.data.*.networkLists.*.description | string | ||
| action_result.data.*.networkLists.*.createDate | string | ||
| action_result.data.*.networkLists.*.createdBy | string | ||
| action_result.data.*.networkLists.*.updateDate | string | ||
| action_result.data.*.networkLists.*.updateBy | string | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Gets a network list's most recent syncPoint version
Type: investigate
Read only: True
For extended parameter, when enabled, provides additional response data identifying who and when the lists were created and updated, and the network list's deployment status in both STAGING and PRODUCTION environments. For includeelements parameter, if enabled, the response list includes all items. For large network lists, this may slow responses and yield large response objects.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for each network list. Comma-separated list is allowed | string | akamai networklist id |
| extended | optional | When enabled, provides additional response data (Default: false) | boolean | |
| includeelements | optional | If enabled, the response list includes all items (Default: false) | boolean |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.extended | boolean | True False | |
| action_result.parameter.includeelements | boolean | True False | |
| action_result.data.*.name | string | ||
| action_result.data.*.networkListType | string | ||
| action_result.data.*.elementCount | numeric | ||
| action_result.data.*.list | string | ip |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.type | string | ||
| action_result.data.*.description | string | ||
| action_result.data.*.createDate | string | ||
| action_result.data.*.createdBy | string | ||
| action_result.data.*.updateDate | string | ||
| action_result.data.*.updatedBy | string | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Create a new network list
Type: generic
Read only: False
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| name | required | Name for the new network list | string | |
| type | required | Type of the new network list | string | |
| description | required | Description of the new network list | string | |
| list | required | IP(s) for the new network list. Comma-separated list is allowed | string | ip |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.name | string | ||
| action_result.parameter.type | string | ||
| action_result.parameter.description | string | ||
| action_result.parameter.list | string | ip |
|
| action_result.data.*.name | string | ||
| action_result.data.*.networkListType | string | ||
| action_result.data.*.elementCount | numeric | ||
| action_result.data.*.list | string | ip |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.type | string | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Removes a network list
Type: generic
Read only: False
You can only remove network lists that never activated. To deactivate a list, you can empty its list of elements.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for the network list | string | akamai networklist id |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.data.*.status | string | ||
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.syncPoint | numeric | akamai networklist syncpoint |
|
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Update the network list items and properties
Type: generic
Read only: False
Allows you to set the name, description, and set of network list items to the resource. The current state of the list will be replaced with the properties and items you provide. The type cannot be changed.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for each network list | string | akamai networklist id |
| name | required | Update or change the name of the network list | string | |
| description | required | Update or change the description of the network list | string |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.name | string | ||
| action_result.parameter.description | string | ||
| action_result.data.*.name | string | ||
| action_result.data.*.networkListType | string | ||
| action_result.data.*.elementCount | numeric | ||
| action_result.data.*.list | string | ip |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.type | string | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Adds the specified element(s) to a list
Type: generic
Read only: False
If the network list's type is IP, the value needs to be a URL-encoded IP address or CIDR block.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for the network list | string | akamai networklist id |
| elements | required | Element(s) to add to the network list. Comma-separated list is allowed | string | ip |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.elements | string | ip |
|
| action_result.data.*.name | string | ||
| action_result.data.*.networkListType | string | ||
| action_result.data.*.elementCount | numeric | ||
| action_result.data.*.list | string | ip |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.type | string | ||
| action_result.data.*.description | string | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Remove the specified element(s) from the list
Type: generic
Read only: False
If the network list's type is IP, the value needs to be a URL-encoded IP address or CIDR block.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for the network list | string | akamai networklist id |
| elements | required | Element(s) to be removed from the network list. Comma-separated list is allowed | string | ip |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.elements | string | ip |
|
| action_result.data.*.name | string | ||
| action_result.data.*.networkListType | string | ||
| action_result.data.*.elementCount | numeric | ||
| action_result.data.*.list | string | ip |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.type | string | ||
| action_result.data.*.description | string | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Activate the most recent syncPoint version of a network list in either the STAGING or PRODUCTION environment
Type: generic
Read only: False
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for the network list | string | akamai networklist id |
| environment | required | Environment to activate the network (Default: STAGING) | string | |
| comments | optional | Comments to add to the network | string | |
| notification | optional | Notification Recipients for the network list. Comma-separated list is allowed | string |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.environment | string | ||
| action_result.parameter.comments | string | ||
| action_result.parameter.notification | string | ||
| action_result.data.*.activationId | numeric | akamai networklist activationid |
|
| action_result.data.*.activationComments | string | ||
| action_result.data.*.activationStatus | string | ||
| action_result.data.*.syncPoint | numeric | akamai networklist syncpoint |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.fast | boolean | True False | |
| action_result.data.*.dispatchCount | numeric | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Shows a network list activation status on either the STAGING or PRODUCTION environment
Type: investigate
Read only: True
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for the network list | string | akamai networklist id |
| environment | required | The environment in which the list activation occurs (Default: STAGING) | string |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.environment | string | ||
| action_result.data.*.activationId | numeric | akamai networklist activationid |
|
| action_result.data.*.activationComments | string | ||
| action_result.data.*.activationStatus | string | ||
| action_result.data.*.syncPoint | numeric | akamai networklist syncpoint |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.fast | boolean | True False | |
| action_result.data.*.dispatchCount | numeric | ||
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Gets a version of a network list
Type: investigate
Read only: True
Gets a version of a network list in its state when activated, with each version identified by its syncPoint value. You can only get syncPoint versions that have been activated. For extended parameter, when enabled, provides additional response data identifying who and when the lists were created and updated, and the network list's deployment status in both STAGING and PRODUCTION environments.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| networklistid | required | Unique identifier for the network list | string | akamai networklist id |
| syncpoint | required | The network list version for which to retrieve the snapshot | numeric | akamai networklist syncpoint |
| extended | optional | When enabled, provides additional response data (Default: false) | boolean |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.networklistid | string | akamai networklist id |
|
| action_result.parameter.syncpoint | numeric | akamai networklist syncpoint |
|
| action_result.parameter.extended | boolean | True False | |
| action_result.data.*.name | string | ||
| action_result.data.*.networkListType | string | ||
| action_result.data.*.elementCount | numeric | ||
| action_result.data.*.list | string | ip |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.data.*.type | string | ||
| action_result.data.*.syncPoint | numeric | akamai networklist syncpoint |
|
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Provides detailed status for a given activation
Type: investigate
Read only: True
Provides detailed status for a given activation, including progress on fast activation and other audit information, in addition to information ordinarily available from the "activation status" action.
| PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS |
|---|---|---|---|---|
| activationid | required | Unique identifier for the network list | numeric | akamai networklist activationid |
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.parameter.activationid | numeric | akamai networklist activationid |
|
| action_result.data.*.activationId | numeric | akamai networklist activationid |
|
| action_result.data.*.createDate | string | ||
| action_result.data.*.createdBy | string | ||
| action_result.data.*.environment | string | ||
| action_result.data.*.fast | boolean | True False | |
| action_result.data.*.networkList.activationComments | string | ||
| action_result.data.*.networkList.activationStatus | string | ||
| action_result.data.*.syncPoint | numeric | akamai networklist syncpoint |
|
| action_result.data.*.uniqueId | string | akamai networklist id |
|
| action_result.status | string | success failed | |
| action_result.message | string | ||
| action_result.summary | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |
Get akamai site shields ip ranges
Type: investigate
Read only: True
No parameters are required for this action
| DATA PATH | TYPE | CONTAINS | EXAMPLE VALUES |
|---|---|---|---|
| action_result.status | string | success failed | |
| action_result.data.*.cidr | string | 202.31.0.0/16 | |
| action_result.message | string | ||
| action_result.summary.num_data | string | ||
| summary.total_objects | numeric | 1 | |
| summary.total_objects_successful | numeric | 1 |