Getting Started
The FTS Akamai MCP server exposes Akamai platform operations as MCP tools. Any MCP-compatible client (Claude Desktop, Claude Code, custom agents) can connect and use them.
{
"mcpServers": {
"fts-akamai": {
"url": "https://ftsmcp.dev/McpServer/"
}
}
}Credential Setup
The server runs without embedded API credentials. Each session must configure its own via configure_credentials.
Akamai EdgeGrid — Provide one or more .edgerc sections. Most users need only [default]. CPS operations can use a separate [cps] section if your credentials are scoped by API.
{
"jsonrpc": "2.0",
"id": 1,
"method": "tools/call",
"params": {
"name": "configure_credentials",
"arguments": {
"_sessionId": "<from initialize response>",
"edgerc": [
{
"section": "default",
"host": "akab-xxx.luna.akamaiapis.net",
"clientToken": "akab-xxx",
"clientSecret": "xxx",
"accessToken": "akab-xxx"
}
],
"cloudflareToken": "cf-bearer-token-here",
"accountSwitchKey": "1-ABC123"
}
}
}Credential resolution order:
- Session store — requested section (e.g.,
cps) - Session store —
defaultsection - Environment variables (server-side
.env) - Not configured — tool returns an error
Credentials live only in process memory and are never persisted to disk or database.
Workflow Patterns
The server offers two approaches for multi-step operations:
Orchestrated (single tool call) — Call one orchestrator tool (competitive_migration or onboard_site) that runs all phases automatically. Best for demos and fully automated pipelines.
Step-by-step (individual tools) — Call each tool individually with human review between phases. Best for production use where you want to validate staging before going to production, or customize parameters at each step.
Both approaches use the same underlying tools — the orchestrators simply chain them together.
Competitive Takeaway Walkthrough
Migrate a site from Cloudflare to Akamai in 17 phases:
configure_credentials— Set Akamai EdgeGrid creds (and optionally CF bearer token)cf_export_config— Export Cloudflare zone config (DNS, page rules, WAF, workers)cf_assess_migration— Analyze config, recommend Akamai products (Ion, AppSec, Edge DNS, SBD)cf_convert_to_akamai— Convert CF rules to PAPI rule tree, WAF policy, DNS recordscps_get_dv_tokens— Get DV/DOM validation tokens for SBD certificatespapi_create_property— Create Akamai property from golden templatedns_validate_zone— Confirm Edge DNS zone is activedns_add_record— Place domain ownership and certificate validation recordspapi_activate_property— Activate to STAGINGpapi_check_activation— Monitor staging activationappsec_create_config— Create WAF in deny modeappsec_activate— Activate WAF to STAGINGpapi_activate_property— Activate to PRODUCTIONpapi_check_activation— Monitor production activationappsec_activate— Activate WAF to PRODUCTIONdns_add_record— Place edge CNAME for DNS cutover- Post-migration deliverables: nameservers, origin IP ACLs, testing guidance
Site Onboarding Walkthrough
Onboard a new site to Akamai in 15 steps:
configure_credentials— Set Akamai EdgeGrid credentialsdns_validate_zone— Confirm Edge DNS zone existspapi_create_property— Create property with hostname, origin, caching rulescps_get_dv_tokens— Get certificate validation tokensdns_add_record— Place domain ownership TXT recorddns_add_record— Place certificate validation CNAMEpapi_activate_property— Activate to STAGINGpapi_check_activation— Monitor staging activationdns_add_record— Place edge CNAMEappsec_create_config— Create WAF config (deny mode)appsec_activate— Activate WAF to STAGINGappsec_check_activation— Monitor WAF stagingpapi_activate_property— Activate to PRODUCTIONappsec_activate— Activate WAF to PRODUCTION- Final verification: property ID, edge hostname, WAF config ID
JSON-RPC Examples
All MCP communication uses JSON-RPC 2.0 over HTTP POST to /McpServer/.
{
"jsonrpc": "2.0",
"id": 1,
"method": "initialize",
"params": {
"protocolVersion": "2025-03-26",
"clientInfo": { "name": "my-client", "version": "1.0" },
"capabilities": {}
}
}{
"jsonrpc": "2.0",
"id": 2,
"method": "tools/list"
}{
"jsonrpc": "2.0",
"id": 3,
"method": "tools/call",
"params": {
"name": "dns_validate_zone",
"arguments": {
"_sessionId": "<from initialize response>",
"zone": "acmecorp.com"
}
}
}{
"jsonrpc": "2.0",
"id": 4,
"method": "prompts/get",
"params": {
"name": "competitive_takeaway",
"arguments": { "domain": "acmecorp.com" }
}
}REST API — Cloudflare Migration
The CF conversion pipeline is also available as a standalone REST API at /CfApi/. Clients send JSON in and get clean JSON out — no MCP protocol required.
GET /CfApi/ — Returns API documentation and available actions.
POST /CfApi/ — Route by action field: export, assess, or convert.
curl -X POST https://ftsmcp.dev/CfApi/ \
-H "Content-Type: application/json" \
-d '{"action":"export","source":"demo","domain":"acmecorp.com"}'curl -X POST https://ftsmcp.dev/CfApi/ \
-H "Content-Type: application/json" \
-d '{"action":"assess","cloudflareConfig": <output from step 1> }'curl -X POST https://ftsmcp.dev/CfApi/ \
-H "Content-Type: application/json" \
-d '{"action":"convert","cloudflareConfig": <step 1>, "assessment": <step 2> }'The convert response contains: papiRuleTree (PAPI JSON), wafPolicy (WAF config), dnsRecords (Edge DNS format), certEnrollment (CPS params), and metadata.
Tool Categories
See the Tool Catalog for the full list. Tools are grouped by:
- Configuration —
configure_credentials - Account Management —
akamai_list_accounts - Workflow — Change request CRUD (
list_,approve_,update_change_requests) - Property Manager (PAPI) — Create, update, activate, monitor properties
- Edge DNS — Zone validation, record management
- Application Security (WAF) — Create, activate, monitor WAF configs
- Certificates (CPS) — DV token retrieval for SBD certs
- CDN — Fast purge (cache invalidation)
- Orchestration —
onboard_site,competitive_migration, CF export/assess/convert