session identifiers

Author: patriciasantaana

src/content/partials/api-shield/required-session-identifiers.mdx

@@ -3,4 +3,4 @@
 
 ---
 
-Session identifiers are necessary to configure [Sequence Mitigation](/api-shield/security/sequence-mitigation/) or [rate limiting recommendations](/api-shield/security/volumetric-abuse-detection/), and to see results in [Sequence Analytics](/api-shield/security/sequence-analytics/) and [Authentication Posture](/api-shield/security/authentication-posture/).
+You must have specific entitlements to configure session identifiers or cookies as a form of identifiers, such as an Enterprise subscription, for features such as [API Discovery](/api-shield/security/api-discovery/), [Sequence Mitigation](/api-shield/security/sequence-mitigation/) or [rate limiting recommendations](/api-shield/security/volumetric-abuse-detection/), and to see results in [Sequence Analytics](/api-shield/security/sequence-analytics/) and [Authentication Posture](/api-shield/security/authentication-posture/).

src/content/partials/api-shield/set-up-session-identifiers.mdx

@@ -2,21 +2,42 @@
 {}
 
 ---
-import { Steps } from "~/components"
+import { Steps, Tabs, TabItem } from "~/components"
 
-<Steps>
-1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain.
-2. Go to **Security** > **API Shield**.
-3. Select **Settings**.
-4. On **Endpoint settings**, select **Manage identifiers**.
-5. Choose the type of session identifier (cookie, HTTP header, or JWT claim).
-   :::note
-   The session identifier cookie must comply with RFC 6265. Otherwise, it will be rejected.
+<Tabs syncKey="dashNewNav"> 
+   <TabItem label="Old dashboard">
+      <Steps>
+         1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain.
+         2. Go to **Security** > **API Shield**.
+         3. Select **Settings**.
+         4. On **Endpoint settings**, select **Manage identifiers**.
+         5. Choose the type of session identifier (cookie, HTTP header, or JWT claim).
+            :::note
+            The session identifier cookie must comply with RFC 6265. Otherwise, it will be rejected.
 
-   If you are using a JWT claim, choose the [Token Configuration](/api-shield/security/jwt-validation/api/#token-configurations) that will verify the JWT. Token Configurations are required to use JWT claims as session identifiers. Refer to [JWT Validation](/api-shield/security/jwt-validation/) for more information.
-   :::
-6. Enter the name of the session identifier.
-7. Select **Save**.
-</Steps>
+            If you are using a JWT claim, choose the [Token Configuration](/api-shield/security/jwt-validation/api/#token-configurations) that will verify the JWT. Token Configurations are required to use JWT claims as session identifiers. Refer to [JWT Validation](/api-shield/security/jwt-validation/) for more information.
+            :::
+         6. Enter the name of the session identifier.
+         7. Select **Save**.
+      </Steps>
+   </TabItem>
+   <TabItem label="New dashboard" icon="rocket">
+      <Steps>
+         1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login), and select your account and domain.
+         2. Go to **Security** > **Settings**
+         3. Filter by **API abuse**.
+         4. On **Session identifiers**, select **Configure session identifiers**.
+         5. Select **Manage identifiers**.
+         6. Choose the type of session identifier (cookie, HTTP header, or JWT claim).
+            :::note
+            The session identifier cookie must comply with RFC 6265. Otherwise, it will be rejected.
+
+            If you are using a JWT claim, choose the [Token Configuration](/api-shield/security/jwt-validation/api/#token-configurations) that will verify the JWT. Token Configurations are required to use JWT claims as session identifiers. Refer to [JWT Validation](/api-shield/security/jwt-validation/) for more information.
+            :::
+         7. Enter the name of the session identifier.
+         8. Select **Save**.
+      </Steps>
+   </TabItem>
+</Tabs>
 
 After setting up session identifiers and allowing some time for Cloudflare to learn your traffic patterns, you can view your per endpoint and per session rate limiting recommendations, as well as enforce per endpoint and per session rate limits by creating new rules. Session identifiers will allow you to view API Discovery results from session ID-based discovery and session traffic patterns in Sequence Analytics.