• Planned

    5

    Modify Client Login Extension

    We would like to request the client login extension link be shown before chain selection in the Windows agent. Currently it only shows up if the user selects the LDAP ...

  • Votes

    4

    Allow Events to be configured to use a default repo (if desired) that ...

    For our linux clients we need the option to either have an event ignore the login options list of repositories and use a default repo set at the event level or we need ...

  • Votes

    2

    Apply Advanced authentication by IP or wireless network (Windows ...

    Hi Our client asks if the second factor can be applied only to users who are out of the office. They have the NAAF client installed on their Surface equipment and they ...

  • Votes

    3

    automatic re-enrollment

    When a user has installed the AA Smartphone app, if they reset their phone, when they re-install and re-enroll it will be a separate enrollment; the original enrollment ...

  • Votes

    2

    5.6.5 config import to v6 destroys cluster

    after initial import of 5.6.5 config into v6, and then build the global cluster, doing the last import before go-live and migration to v6, all cluster information is ...

  • Votes

    1

    only allow smartphone to access from the internet

    Some, especially small companies, do not have a SPI-firewall or reverseproxy-server. Nobody should get access to the AA server from the internet, except...Smartphones. ...

  • Votes

    1

    Automatic configuration Script

    For a typical GM installation with AD, Radius, and say Smartphone, there are actually not so many parameters to do the installation. It still takes many steps, and things ...

  • Votes

    3

    Set user attribute in repository after enrollment (LDAP hook)

    Often AAF is working in conjunction with Identity Management / Access Management systems. In these cases it is desirable to know when users have enrolled (one or more) ...

  • Votes

    4

    Multi-language support for Twilio

    Twilio supports many different languages for their text-to-speech converter. This is a simple extension to the current Twilio configuration in AAF. At ...

  • Votes

    7

    Configurable Offline OTP Cache Size

    We have laptops setup to use 2 factor authentication on logon. Windows natively handles the caching of AD credentials properly (and can be configured via group policy). ...

  • Votes

    2

    Notification upon attempting to save an Event with no Chains

    Add a pop-up notification upon attempting to save an Event with no chains, notifying the user that all future attempts to sign in using this event will be impossible ...

  • Votes

    1

    Mobile App 3rd Party CA Support

    Android 8 and Mobile App 3.1.5 doesn't allow use of 3rd Party Certificate Authorities, even though they are installed for "VPN & Apps" on the device. The response is ...

  • Planned

    14

    Smartphone Method push message

    Allow the customization of the push authentication message used on the Smartphone method. Currently the message has information like IP and username that some customers ...

  • Votes

    13

    Windows Client Login offline Master token

    When we install the Windows Client on a device, we can enable the Offline login to permit the user to access their computer when they do not have access to internet. ...

  • Votes

    6

    Add Healthcheck URL for Load Balancing

    The current solution for a load balancer to determine the status of an AA web server is to build rules based on the AAF published API. Suggest adding a single ...

  • Votes

    13

    Mobile App Custom Look & Feel for a given enterprise

    Hi guys, we would like the mobile app to be able to handle images and colors that match our corporate standards, so it feels as a more natural enterprise tool. Some ...

  • Votes

    10

    SMS-OTP Authenticator allows letters and special characters in the ...

    Currently, users can also enter letters and special characters in the phone number input field. This of course leads to the fact that the telephone numbers cannot be ...

  • Votes

    13

    Enrolled SMS-OTP Authenticator provides unnecessary buttons

    Users who are automatically enrolled to the SMS-OTP get the buttons 'Save' and 'Delete' displayed, which has no value and only leads to confusion, because nothing can be ...

  • Votes

    7

    Clear message when deleting authenticators

    Currently, when deleting an authenticator, a user only gets a message asking if he wants to continue. This can be confirmed with 'Ok' or canceled. Since this system is ...

  • Votes

    10

    Automatic Logout with countdown display

    To make sure that users do not leave their session unattended, an automatic logout, which you can optionally enable and set up a time interval (5, 10, 15) minutes as an ...