• Votes

    1

    Mobile App 3rd Party CA Support

    Android 8 and Mobile App 3.1.5 doesn't allow use of 3rd Party Certificate Authorities, even though they are installed for "VPN & Apps" on the device. The response is ...

  • Votes

    16

    Synchronizing changes from mobile devices back to AAF server

    After deleting the smartphone authenticator, the template within the native application (NetIQ Advanced Authentication) is also deleted at the AAF start page (/Account, ...

  • Votes

    11

    Add support for Mac OS TouchID as an advanced auth authentication ...

    Add support for Mac OS TouchID as an advanced authentication authentication method

  • Votes

    3

    AA needs manual saml metadata configuration option

    AA’s SAML IDP capabilities right now only allows you to setup federation with a SAML SP’s via importing a SAML metadata file. Many SAML SP’s are unable to create ...

  • Votes

    1

    OTP Support Multiple Languages

    Hello, We want to be able to send SMS OTP in multiple languages. It will be great if we will be able to map a LDAP attribute for user proffered language, and the AAF ...

  • Votes

    1

    Custom VOICE OTP Sender

    Hello, We will like to have the ability to use our own Voice OTP senders. Currently only Twilio is supported.

  • Planned

    11

    Allow more than one smartphone\PKI card for user

    We want to be able to use more than one smartphone\PKI card authenticators. For example, user has more than one smartphone and he want to be able to authenticate using ...

  • Votes

    1

    Time Shifting for Hard Token

    We recently received a new batch of TOTP token from Vasco Go6 TOTP Type, noticed that we need to tune the Window Period into a bigger value to authenticate successfully. ...

  • Votes

    2

    Automatically enroll BankId users

    The BankId method is pretty useless if it's not possible to auto-enroll users with a predefined value of "personal id" in LDAP.

  • Votes

    3

    TOTP Enrollment with serial via public api

    We would like to enroll hardware TOTP tokens via public API with unprivileged session, in combination with token serial plus first OTP. Request example: ...

  • Votes

    5

    Allow for customization of labels when AD password is not sync

    Typically, when you change your AD password, you have a message displayed after you successfully logon (OS or Mac Logon) which indicates: ‘"Enter password for sync". We ...

  • Votes

    6

    Support RADIUS Authentication Methods CHAP and MS-CHAP

    Our IT-Security Department forbid the usage of PAP because of severe security issues. Please support at least MS-CHAP, otherwise we can't use the AA RADIUS for our ...

  • Votes

    4

    Dynamic SMS gateway

    If there are more than one SMS gateways being used by an organization, there needs to be a dynamic configuration available for the same. The current example can if the ...

  • Votes

    2

    Add “SecureLogin” event to list of default events in Advanced ...

    Advanced Authentication should include a generic event called “SecureLogin” in its list of default events. It would also be helpful if SecureLogin were to use this event ...

  • Votes

    1

    Windows app similar to Smartphone App

    The request is from a customer whos users doesnt all have smartphones but who would still like the "Accept" "Decline" functionality in a Windows app. Yes we have the ...

  • Votes

    4

    Just in time import of SMS OTP and MAIL OTP when available on LDAP

    When using LDAP attribute to autocreate SMS OTP and Mail OTP methods, they are imported with delay If a customer has alternive ways to enroll SMS OTP and Mail OTP ...

  • Votes

    3

    Support returnURL and returnUnregisteredURL after enrollment

    Sometimes NAA is integrated with other IDP. In these cases, a user may be sent to NAA just to enroll a specific method, for instance the user could be redirected to: ...

  • Votes

    3

    Basic auth for specific NAA resources

    Today it is possible to make use of basic auth just for Authenticators Management main page if enabled on its event Since it is the only supported way to do SSO with ...

  • Votes

    3

    Improve LDAP repo support to do fast scan during login and chain ...

    Use case: to be used whenever “Nesting support” is Disabled OR if the the directory is an eDirectory First call to retrieve user (& (objectClass=user) (| ...

  • Votes

    1

    smartphone methode support on ADFS using AA-ADFS MFA plugin

    Smartphone methode is now unavailable with ADFS Multi-Factor Authentication Plug-in. We would like to use push notification instead of OTP/TOTP/SMS