Skip to content

Equinix Authentication Token

Service Name: Equinix

Service Description: Equinix is a global digital infrastructure company that provides data center and interconnection services. It offers colocation, interconnection solutions, and cloud services through its global platform of data centers.

Service Address: https://www.equinix.com/

Validation Type: API Auth

IP Allow list: IP restrictions can be configured at the account level through Equinix's security controls.

Secret Access Scope: Grants programmatic access to Equinix services including Equinix Fabric, Network Edge, and Metal infrastructure. Can be used to manage data center resources, interconnections, and cloud connectivity.

Secret Revokement URL: https://developer.equinix.com/dev-docs/fabric/getting-started/authentication

Secret Example: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJlcXVpbml4X3VzZXIiLCJpYXQiO jE2NTEyMzQ1Njd9.8dKb_qXq2UzZnQT-hMimmEF0eUZxP3_Jh7yRm-NZ4eQ

Suspicious Activity Investigation Instructions:

  • Review Equinix Portal access logs for unusual login patterns or locations
  • Check API activity logs for unauthorized operations or resource modifications
  • Monitor for unexpected changes to interconnection configurations or network settings
  • Review billing information for unexpected charges or resource usage
  • Verify if there are any unauthorized users added to your Equinix account

Mitigation Instructions:

  • Immediately revoke the compromised authentication token through the Equinix

Portal

  • Generate a new authentication token with appropriate permissions
  • Update all applications and services using the old token with the new one
  • Review and adjust token permissions to follow the principle of least privilege
  • Enable multi-factor authentication for all Equinix Portal users if not already

enabled

  • Implement IP restrictions for API access where possible
  • Review and update your organization's secret management practices