Equinix Authentication Token
Service Name: Equinix
Service Description: Equinix is a global digital infrastructure company that provides data center and interconnection services. It offers colocation, interconnection solutions, and cloud services through its global platform of data centers.
Service Address: https://www.equinix.com/
Validation Type: API Auth
IP Allow list: IP restrictions can be configured at the account level through Equinix's security controls.
Secret Access Scope: Grants programmatic access to Equinix services including Equinix Fabric, Network Edge, and Metal infrastructure. Can be used to manage data center resources, interconnections, and cloud connectivity.
Secret Revokement URL: https://developer.equinix.com/dev-docs/fabric/getting-started/authentication
Secret Example: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJlcXVpbml4X3VzZXIiLCJpYXQiO jE2NTEyMzQ1Njd9.8dKb_qXq2UzZnQT-hMimmEF0eUZxP3_Jh7yRm-NZ4eQ
Suspicious Activity Investigation Instructions:
- Review Equinix Portal access logs for unusual login patterns or locations
- Check API activity logs for unauthorized operations or resource modifications
- Monitor for unexpected changes to interconnection configurations or network settings
- Review billing information for unexpected charges or resource usage
- Verify if there are any unauthorized users added to your Equinix account
Mitigation Instructions:
- Immediately revoke the compromised authentication token through the Equinix
Portal
- Generate a new authentication token with appropriate permissions
- Update all applications and services using the old token with the new one
- Review and adjust token permissions to follow the principle of least privilege
- Enable multi-factor authentication for all Equinix Portal users if not already
enabled
- Implement IP restrictions for API access where possible
- Review and update your organization's secret management practices