Advanced Authentication (AAf): Helpdesk - Two-Eyes procedure to change authenticator from user

In regard to this Idea: https://ideas.microfocus.com/MFI/advance-authentication/Idea/Detail/15336

It would be good if there is an option to define which groups need a two-eye procedure to manage the credentials.

Which means to manage users from the Management Group there will be two users from the Enroll-AdminGroup-Management needed to make changes.

Option 1
EnrollAdminUser1 authenticates to the Helpdesk
EnrollAdminUser1 types the username of the Management user
After that AAF recognize that for managing this user there is another EnrollAdmin needed.
EnrollAdminUser2 has to authenticate
EnrollAdminUser1 can make changes of the authenticators for the Management user

Option 2
EnrollAdminUser1 authenticates to the Helpdesk
EnrollAdminUser1 types the username of the Management user
EnrollAdminUser1 is changing one of the authenticators
If the EnrollAdminUser1 click "Save" or "Delete" to change the authenticator
than AAF recognize that for managing this user there is another EnrollAdmin needed.
EnrollAdminUser2 has to authenticate to confirm this change.

by: Kevin S. | over a year ago | Integrations

Upvoted on behalf of MAHLE Group

by: Dan B. | over a year ago

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

7

Helpdesk - Two-Eyes procedure to change authenticator from user

Comments