(content updated on March 7, 2016)
Note: As of writing Akamai H2 support is in "Beta” and available for free to Akamai customers with Web Experience products.
1) Your delivery certificate needs to have Perfect Forward Secrecy (PFS) support enabled. You can do this with a couple of clicks in the Luna Control Center using the "SSL Certificate Management Tool". Click on the "DEPLOYMENT AND TLS METADATA" Tab, and ensure the cipher profile matches one of the following:
- ak-akamai-default-2016q3 (recommended)
2) You need to use a Web Experience product (like Ion, Alta, WAA, DSA, and RMA) with HTTPS enabled, and have the "HTTP2 Beta" line item in your contract for the behavior to appear in Property Manager (you can contact your Akamai representative if you are not sure if H2 is part of your Akamai contract).
3) Note your origin server requires no changes, and will not be impacted in any way as the Akamai Edge server will talk HTTP version 2.x with clients and HTTP version 1.x with your origin server
Note: H2 is self-service within Property Manager. If you have a configuration in the legacy "Configuration Manager" mode, you should consider upgrading it to Property Manager so you can enable H2 and benefit from all increased self-service and functionality provided by the Property Manager tool.
1) Edit a new version of your Akamai configuration in Property Manager.
2) Click the "Add Rule", select "Enable HTTP2" from the list, and click "Insert Rule".
3) Add the hostname(s) you want to associate with "HTTP2", and save the configuration
Note: If you use a value other than 100 on the percentage of clients (in order to do A/B testing). You need to understand the "Percentage of Clients" uses a client-ip bucket type to ensure clients see consistent results (either they get h2 all the time, or never).
Here is a 1 minute video showing how to do this: Enabling HTTP/2 using Property Manager
4) Activate your configuration
You can test the certificate requirements by following the instructions in Validate certificate h2 support using openssl
You will need to test H2 using a browser that supports the new protocol (see HTTP/2 Browser Support).
Once you have enabled H2 in the browser, visit the site and ensure the protocol version shows as HTTP/2.0
You can check https://http2.akamai.com/ to see the Akamai H2 implementation at work.
Firefox: Use Firefox Web Developer tools to inspect the headers and check it displays "Version: HTTP/2.0"
Chrome: In Chrome type "chrome://net-internals/#http2" in the address bar to show which Websites support SPDY and HTTP/2 (check the "Protocol Negotiated" column)