Since multiple teams were involved in issue resolving, at least ten plus people from our side were involved in the implementation process. Everyone was contributing, even if we consider two per team. We are mostly talking about engineers, so they are all engineers. This ten plus people includes one from the NOC team, one from the operations team, and two or three from the security team.
Akamai API Security
AkamaiExternal reviews
45 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Unified API visibility has transformed governance and now supports compliance reporting
What is our primary use case?
What is most valuable?
What I already appreciate about Akamai API Security is that initially we were struggling with how to get this configured, but after that everything went smoothly. We were also surprised to discover there were five hundred plus endpoints that we are using across the organization, which was a surprise even to our management and leadership. We did not know that many teams were simply pushing small APIs and big APIs into the server. This gave us an overall picture of how many APIs we are using across our organization, and now we are more cautious about which APIs should be used publicly and how we secure our APIs. Since it gives a very good dashboard and a unified platform, it is very helpful for us to know which API is coming from which team and how many teams are using one particular API. All of this is a really good advantage for our management as well as our leadership, and we can even go back and show it to the respective project teams. API discovery and fingerprinting is the main feature that we appreciated.
We are showing the reports from Akamai API Security to HITRUST compliance and HIPAA compliance certifications. We are also using PCI, so we share these reports as evidence to these auditors when they come.
What needs improvement?
The tool is blocking and only the person who has access to the tool can actually see how many DDoS attacks were blocked. Since I do not log in to the portal myself, I am unaware of this capability.
I heard the word Akamai's anomaly detection from my team that they use this, but I don't know about it on the technical aspect.
I am unaware of Akamai API Security's ability to adjust security policies in real-time.
I am also unaware of which feature of Akamai API Security has helped us monitor API usage trends. Someone who is actually hands-on using Akamai API Security might know this.
For how long have I used the solution?
The procurement for Akamai API Security happened almost ten months ago, and actual work has started only a couple of months before.
What do I think about the scalability of the solution?
Good, its fast and easily scalable, the Akamai team is very helpful
How are customer service and support?
Regarding Akamai technical support, since I am not directly involved in it, I do not want to provide inaccurate information. I will rate it at eight.
How would you rate customer service and support?
Positive
How was the initial setup?
Because Akamai API Security was a new tool, we definitely needed support from the vendor directly. We were working only using Postman and Bruno. We had to directly move from installable tools to Akamai, which is a cloud platform. We definitely wanted some tool knowledge from the vendor, and once that was provided, things went very smooth. The tool started identifying the endpoints all by itself, and we ourselves do not have any visibility.
The main challenges we had with Akamai API Security were how to set it up on the AWS cloud environment and how to access this portal. We had to handle the major and basic configuration, and given that our organization had a lot of internal APIs which are not exposed to the outside environment, public APIs, and intermediary APIs, all these had to be interconnected. The vendor also had to understand our current environment and then recommend how to specifically access our internal APIs. All those network-related issues required us to bring in the NOC team and ask them to open certain ports specific to our APIs, and then everything went smoothly. The major heavy lift was done by the network team and the vendor side.
What was our ROI?
I can identify all of these benefits after the implementation of Akamai API Security. Identifying and following up with the team was previously very challenging. Teams are reluctant to provide information, some managers ask us to look at their Confluence page, our time is wasted, and everyone's time is wasted. We have to follow up with the developers, they are on leave, and everything was a mess. Getting everything from one single portal without anyone's interference saved us a lot of money, time, and frustration.
What other advice do I have?
I am unaware of Akamai API Security's ability to adjust security policies in real-time.
I am unaware of which feature of Akamai API Security has helped us monitor API usage trends. Someone who is actually hands-on using Akamai API Security might know this.
Regarding Akamai technical support, since I am not directly involved in it, I do not want to provide inaccurate information. I will rate it at eight.
I received a very good feedback from my team regarding Akamai API Security, so I would rate it as nine. My overall review rating for Akamai API Security is eight.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Improved API monitoring has saved time and now lets our team focus on higher‑priority security work
What is our primary use case?
Our main use case for Akamai API Security is securing the API security as we're using the API gateways.
A specific example of how we use Akamai API Security with our API gateways is when somebody hits our member-facing website from outside. We're actively monitoring where they're coming from and whether it's legitimate, and then we are doing all sorts of security checks based on our policy to ensure compliance.
What is most valuable?
The best features that Akamai API Security offers are the information and aggregation we get, as well as the alerts that we receive.
These features help my team in our daily work because my team is actually working on different things apart from making sure the lights are on, and even though API security is something they would look into, they can't spend a whole lot of time on this. We definitely depend on these kinds of tools. When we get an alert, we try to look at the information so it's at a high level so we can act accordingly. Once we know the information we're looking at, our team can go deeply and investigate that. In terms of aggregation, we heavily rely on these alerts.
Akamai API Security has made a positive difference for our organization by improving our security posture and saving our team time, as we can actually prioritize tasks unless there are some false positives, but it is definitely saving a lot of time.
We definitely see that our posture is much better.
What needs improvement?
I don't really have anything to add about any needed improvements at this point.
For how long have I used the solution?
I just started with Akamai API Security before evaluating other options.
What do I think about the stability of the solution?
Akamai API Security is stable.
How are customer service and support?
I don't have any issues with customer support right now.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I previously used a different solution before Akamai API Security, which was Check Point.
What was our ROI?
I have seen a return on investment, and the main thing is the time saved, allowing our employees to focus on other priority work.
What's my experience with pricing, setup cost, and licensing?
The experience with pricing, setup cost, and licensing is that it's a totally different team to work on, but I heard the setup is pretty straightforward.
What other advice do I have?
I would definitely advise others looking into using Akamai API Security to do a POC. I found this interview really great and don't think anything needs to change for the future. I would rate this experience an 8.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Uses bot detection and browser inspection features to fine-tune access policies effectively
What is our primary use case?
I use Akamai API Security. I downloaded a report comparing WAF Akamai and WAF Azure to understand the real differences. I studied the solution to comprehend how it detects bots. For example, with Akamai API Security, the browser inspector helps me understand the bot detection capabilities.
What is most valuable?
I enabled the anomaly detection to understand the solution better. I configured the policies and created exclusions for some bots. For example, when I read and inspected the user agent data, I found that the Axion bot request was blocked by the browser inspector. In this case, I created an exclusion for the user agent Axion. I enabled the anomaly detection to study and understand the solution.
What needs improvement?
More features would be beneficial.
For how long have I used the solution?
I have used it for one year.
What do I think about the stability of the solution?
I have not experienced any stability issues. My experience has been good, and it is an excellent WAF solution.
How are customer service and support?
The support from Akamai API Security is good. The employment and support are of excellent quality.
How would you rate customer service and support?
Positive
What's my experience with pricing, setup cost, and licensing?
It is not expensive. It is practical to use and represents an excellent solution.
Which other solutions did I evaluate?
The difference includes web application and API solutions.
What other advice do I have?
I received a report and downloaded it, but I did not read the entire document. I do not have complete knowledge to answer this question at this moment. My overall review rating for Akamai API Security is 10 out of 10.
Its very good
What do you like best about the product?
Its very easy to use and good pricing. Cheap prices
What do you dislike about the product?
May be more cheaper prices would be good
What problems is the product solving and how is that benefiting you?
webhosting and server hosting
Amazing for clearing cache
What do you like best about the product?
The ease of the Akamai intergration is amazing. I use it frequently throughout the day.
What do you dislike about the product?
I have not found anything that i dislike.
What problems is the product solving and how is that benefiting you?
Making my updates show up as soon as i send a request.
Excellent API authentication support but needs better analytics and reporting
What is our primary use case?
My primary use case was to identify PII and financial information exposed over APIs, focusing on accidental exposures or poorly constructed APIs.
What is most valuable?
I conducted a proof of concept for four months to identify PII and financial information exposed through APIs. Primarily, the API part is effective. I have been using Akamai AppMyWAF. The tool's API authentication, tokenization, and enhanced scalability and performance are valuable features. Akamai's support is impeccable, and its plug-and-play features are helpful.
What needs improvement?
The challenge I found was with contextualization and how analytics are generated. Reports were sent in a raw format without proper analytics. There was no mechanism to identify which APIs will always have PII information, such as those with PCI data. Tuning to skip known APIs wasn't available.
For how long have I used the solution?
I used the tool for a pilot project, but the subsequent proof of concept was not conducted.
What do I think about the stability of the solution?
Performance and scalability are handled well, posing no problem.
What do I think about the scalability of the solution?
From a traffic load perspective, I find the tool is always better in terms of scalability and performance.
How are customer service and support?
The support from Akamai is impeccable. It is expensive but one of the best.
How would you rate customer service and support?
Negative
Which solution did I use previously and why did I switch?
How was the initial setup?
The solution is not difficult to set up. It's a plug-and-play add-on, making it simpler for organizations already using Akamai WAF.
What about the implementation team?
Support from Akamai was consistent, with a dedicated technical account manager from their side.
What's my experience with pricing, setup cost, and licensing?
I mentioned that support from Akamai is expensive yet it is worth it.
Which other solutions did I evaluate?
I explored API security from a multiple domain approach with different tools.
What other advice do I have?
Based on my last assessment, I would rate the solution four out of ten.
Good option to extend existing global webservice to China
What do you like best about the product?
Integrated with existing Akamai solution. For any company that is already invested and utilizing Akamai CDN network, this is the easiest solution to extend your reach to China. The team is professional in dealing with specific regulations requirements in China.
What do you dislike about the product?
Slightly higher cost compared to some local providers from China. However, we still found a single global service provider is much easier to manage than having to deal with a specific service provider for a specific region.
What problems is the product solving and how is that benefiting you?
Deploying our existing web service to China. Helping with solving regulatory requirements.
Extending global web presnese to China
What do you like best about the product?
Integrate with existing Akamai services well, and extend your existing global presence to China. Great security features
What do you dislike about the product?
Cost higher compared to local service provider such as Alibaba Cloud.
What problems is the product solving and how is that benefiting you?
Run a website in China and comply with local regulatory
The solution protects APIs from DDoS attacks, but it should use machine learning and API throttling together
What is our primary use case?
We use Akamai API Security to protect our APIs from any DDoS attacks.
What is most valuable?
API throttling is the most valuable feature of Akamai API Security.
What needs improvement?
It would be beneficial to use machine learning and API throttling together to identify how the APIs are called and whether it's coming from the right person or the wrong person. Akamai is developing that type of feature called URL protection, which is a mixture of API throttling and machine learning. Before blocking everything, this feature would check and first block requests coming from a hosting provider with a bad reputation.
For how long have I used the solution?
I have been using Akamai API Security since 2017.
What do I think about the stability of the solution?
Akamai API Security is a stable solution.
What do I think about the scalability of the solution?
At least 25 to 30 users are using Akamai API Security in our organization.
How was the initial setup?
The solution’s initial setup is easy.
What's my experience with pricing, setup cost, and licensing?
We have a limit to the number of APIs we can use inside a bundle, and we have to pay extra if we exceed that limit.
What other advice do I have?
Users can use Akamai API Security depending on their use cases. Akamai API Security has simple features, and it's not very complicated.
Overall, I rate Akamai API Security a seven out of ten.
REAL GAME CHANGER FOR WEB PERFORMANCE AND SECURITY
What do you like best about the product?
Akamai software has a vast content delivery network which has drastically improved our website load times. Their Web Application Firewall (WAF) and DDoS mitigation services are also outstanding.
What do you dislike about the product?
More budget-friendly options tailored to startups and smaller enterprises would be a great deal.
What problems is the product solving and how is that benefiting you?
the software has eliminated of slow website loading times. This for us has boosted user satisfaction and engagement, ultimately driving business growth.
showing 1 - 10