• Votes

    6

    Add Healthcheck URL for Load Balancing

    The current solution for a load balancer to determine the status of an AA web server is to build rules based on the AAF published API. Suggest adding a single ...

  • Votes

    13

    Mobile App Custom Look & Feel for a given enterprise

    Hi guys, we would like the mobile app to be able to handle images and colors that match our corporate standards, so it feels as a more natural enterprise tool. Some ...

  • Votes

    10

    SMS-OTP Authenticator allows letters and special characters in the ...

    Currently, users can also enter letters and special characters in the phone number input field. This of course leads to the fact that the telephone numbers cannot be ...

  • Votes

    13

    Enrolled SMS-OTP Authenticator provides unnecessary buttons

    Users who are automatically enrolled to the SMS-OTP get the buttons 'Save' and 'Delete' displayed, which has no value and only leads to confusion, because nothing can be ...

  • Votes

    7

    Clear message when deleting authenticators

    Currently, when deleting an authenticator, a user only gets a message asking if he wants to continue. This can be confirmed with 'Ok' or canceled. Since this system is ...

  • Votes

    10

    Automatic Logout with countdown display

    To make sure that users do not leave their session unattended, an automatic logout, which you can optionally enable and set up a time interval (5, 10, 15) minutes as an ...

  • Votes

    16

    Synchronizing changes from mobile devices back to AAF server

    After deleting the smartphone authenticator, the template within the native application (NetIQ Advanced Authentication) is also deleted at the AAF start page (/Account, ...

  • Votes

    9

    Align input centrally on login page

    The current login screen with user name and password is displayed at the top of the page. It would be better to display the field centrally, as this is more visible on ...

  • Votes

    10

    Inconsistent input check on the login page

    The input check on the login page is not consistent. If you do not enter a user name, no error message "No user name" is displayed. If you do not enter a password, the ...

  • Votes

    10

    Countdown next to the QR code to show how long the QR code will still ...

    It would be very convenient if a countdown were displayed next to the QR code so that the user can see how many seconds remain to scan the QR code.

  • Votes

    3

    populate the AD domain\username after client is installed and prior to ...

    When a user fist logs into aaf after the client was first installed the user must enter the AD domain\username. It would be ideal if the aaf installer could find the ...

  • Votes

    8

    Should be able to define multiple CSS/branding customizations on the ...

    Should be able to define multiple CSS/branding customizations on the same AA webserver, auto-enforced by the AA webserver based on the incoming HTTP Request “Host” ...

  • Votes

    10

    AA should have an option for customers to choose to completely ...

    AA should have an option for customers to choose to completely eliminate the mandatory Endpoint trust relationship mechanism built into AA thick clients (Win/Mac/Linux). ...

  • Votes

    5

    AA should have a well-thought out configuration option for explicitly ...

    AA should have a well-thought out configuration option for explicitly designated AA Webserver role servers to turn off access to all portals ...

  • Votes

    8

    AA should allow for an intelligent combination of Fingerprint and ...

    AA should allow for an intelligent combination of Fingerprint and Windows Hello within a Chain, in addition to also some other unrelated method like LDAP Password. By ...

  • Votes

    8

    AA Admin console’s GUI to perform a full AA data backup should, in ...

    AA Admin console’s GUI to perform a full AA data backup should, in addition to the already upcoming AA feature to make the backup a schedulable item in the GUI, also ...

  • Votes

    2

    SMS/Voice methods allow for no-confirmation-required abuse when ...

    Security vulnerability: the SMS and Voice methods allow for no-confirmation-required abuse when “registering” phone numbers via the Authenticators Management portal. Just ...

  • Votes

    2

    poorly worded and inappropriate guidance on the SMS and Voice OTP ...

    Need the ability to edit the poorly worded and inappropriate guidance on the SMS OTP and Voice OTP enrollment screens (see screenshots below)? I don’t see a “Policies à ...

  • Votes

    2

    AA Windows Client needs to filter Chains based on hardware that AA ...

    The AA Windows Client needs to filter available Chains list based on the availability of locally present hardware that the AA Device Service detects as available. Right ...

  • Votes

    3

    AA needs manual saml metadata configuration option

    AA’s SAML IDP capabilities right now only allows you to setup federation with a SAML SP’s via importing a SAML metadata file. Many SAML SP’s are unable to create ...