The IP Whitelist API
The IP whitelist functionality in Luna Control Center serves as a filtering mechanism for incoming Luna user login requests. The IP whitelist API lets you programmatically prevent your company’s Luna users from accessing Luna from IP address you leave off the whitelist. This API is part of the larger Identity and Access Management application in Luna.
Once enabled, the IP whitelist functionality lets users log in only from approved, or whitelisted, IP addresses. All other users trying to access Luna from non-whitelisted IP addresses are blocked. The only requests that are accepted are those coming from CIDR blocks or IP addresses that you have registered and are recognized based on HTTP headers.
The IP whitelist on your company’s Luna account is represented by an array of CIDR blocks, where each CIDR block has a unique identifier and additional descriptive information. The entire array of CIDR blocks is referred to as the IP whitelist, and allows you to perform operations on all of the CIDR blocks at once. Otherwise, you must enable or disable CIDR blocks one at a time.
You can enable or disable IP whitelist at the account level, but you can’t edit it directly. Because there is only one IP whitelist per account in Luna, you do not need to specifically or uniquely identify it when interacting with it through this API.
Who Should Use This API
You should use this API if you are an administrator on your company’s Luna account and you manage your company’s CIDR lists. You should use this CIDR list to programatically allow user access to Luna Control Center only from IP addresses you specify.
Review Get Started on tools that Akamai provides for all its APIs.
Review Authorize Your Client to create your API access credentials and authorizations. As detailed in the API Identity Model section, you then access the API using custom hostnames that looks like this:
This API requires admin-level grants to use. Ensure you add them to your client.
Review the Authorize Your Client section to make sure the identity under which you provision the API can access its full range of functionality. Use the Identity Management application to expand access if necessary, or the Identity Management API as a programmatic alternative.
Last modified: 3/29/2018