• Votes

    3

    Share secret questions between accounts

    Like PIN, HOTP, U2F, and others, we would like to be able to share secret questions from one account to another.

  • Votes

    3

    Share smartphone method between accounts

    Like PIN, HOTP, U2F, and others, we would like to be able to share the smartphone method from one account to another.

  • Votes

    6

    Syslog messages for failed attempts to AdminUI and Helpdesk events due ...

    Current situation: Today, when a user attempts to login to the AdminUI and authenticates successfully but does not have the proper authorization (i.e. does not have the ...

  • Votes

    6

    Provide Advanced Authentication as .ova in addition to .iso

    The Advanced Authentication appliance is only available as an .iso. In addition to .iso, we would like to have Advanced Authentication provided as an .ova in addition to ...

  • Votes

    3

    More descriptive confirmation message when deleting OTP token

    Current situation: When hitting delete on an OTP token, the confirmation dialog "Do you want to continue?" shows. From there you hit either OK or CANCEL. Desired ...

  • Votes

    3

    Different languages per email OTP template

    Today we can have customized method settings per event for email one time password. We would like to see this further extended so that within the customized method ...

  • Votes

    4

    Change or delete a single secret question

    We would like the ability to delete or change the answer to a single secret question. As it seems now, when a user wants to change the value for a secret question or have ...

  • Votes

    8

    IPv6 support

    We are running in a dual stack environment and we need AAF as a product to support IPv6 in addition to IPv4.

  • Votes

    3

    Do not show chains with Smartphone method when client does not have a ...

    Related to https://ideas.microfocus.com/MFI/advance-authentication/Idea/Detail/14402 Current situation: When offline OTP for Smartphone method is disabled and the user ...

  • Votes

    14

    Email notification when an authenticator is enrolled, modified, or ...

    When a user or help desk agent enrolls, modifies, or deletes a user's authenticator, there is no notification to the user of this activity. This means that users' ...

  • Votes

    5

    Use the NetIQ iOS app to generate one time passwords from a YubiKey ...

    We would like it if the NetIQ implemented the Yubico iOS SDK so that our users could use a single app for the smartphone method and also to get YubiKey one time ...

  • Votes

    9

    Ability to reorder chains within an event

    Current situation: If you have an event with multiple chains and you want to change the order of the chains, you need to remove the chains (send them back to the ...

  • Planned

    10

    Determine RADIUS event by client IP address

    In a situation where an environment has multiple RADIUS events, the RADIUS event that is intended to be used by the connecting RADIUS client is determined by the ...

  • Votes

    6

    Use STARTTLS for LDAP-based repositories

    LDAP supports STARTTLS to encrypt communications using TLS. STARTTLS begins as a plaintext connection over the standard LDAP port (389), and that connection is then ...

  • Votes

    7

    Deleting a Smartphone authenticator in the NetIQ app deletes the ...

    Current situation: If you delete a Smartphone authenticator from the Self-Service portal/server-side, the Smartphone authenticator on your NetIQ app is deleted. However, ...

  • Votes

    4

    Don't include Smartphone enrollments as part of backed up app data for ...

    This behavior was observed when a user migrated from an older iPhone to a new iPhone but may also apply to Android devices. Current situation: The Smartphone enrollments ...

  • Votes

    9

    Customize wording inside user facing interfaces

    Looking to customize verbiage inside user facing web interfaces to match either internal language/references or technical level of staff. For instance: "<p>Welcome to ...

  • Votes

    3

    Disable modification of automatically enrolled Authenticators in the ...

    Some Authenticators are automatically created by Advanced Authentication, e.g. LDAP password. If you click on the Authenticator in the Self-Service portal, the Edit page ...

  • Votes

    6

    Event Based Lockout Policies

    We would like to see event based lockout policies with the ability to configure different lockout attempt thresholds and durations and not effect other events for the ...

  • Planned

    11

    authenticator sharing

    Allow a shared authenticator to be used regardless of whether or not the the account it is shared with has the same authenticator enrolled or not. For example, if a ...