-
Planned
11
Allow more than one smartphone\PKI card for user
We want to be able to use more than one smartphone\PKI card authenticators. For example, user has more than one smartphone and he want to be able to authenticate using ...
Comments (2) | by: Tomer A. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
11
Add support for Mac OS TouchID as an advanced auth authentication ...
Add support for Mac OS TouchID as an advanced authentication authentication method
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Planned
10
Support for more Linux distribution
Some customer would like to integrate the AAF with other linux derivatives as example debian. So it is possible to get more security on environments with different ...
Comments (10) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
8
Allow for customization of labels when using TOTP
Typically, when you enroll a device using a TOTP authenticator app like Google's or Microsoft's, after you enroll, the account shows up with the name of the application ...
Comments (4) | by: Matt W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
8
Support AD Global Catalog in AAF
As customers tend to have many ADs in their forest, we need support for global catalog functionality for AAF by using LDAPS on 3269. ...
Comments (0) | by: Anton H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Add integration with Cisco VPN as part of the AAF documentation
Similar to OpenVPN, we have done a few integrations between AAF and Cisco AnyConnect (VPN) so we could have these steps as part of the documentation for AAF and we could ...
Comments (3) | by: Bruno U. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Ability to enroll Windows Hello Fingerprint / Face Recognition ...
Provide the ability to easy enroll the Windows Hello "Face Recognition, Fingerprint, etc" directly with the self enrollment portal. Provide also the ability to do this ...
Comments (0) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Lets encrypt integration
Not just for AAF, but also Filr etc it would be great to have support / automation possibility to use lets encrypt certificates.
Comments (1) | by: Werner H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Helpdesk - Granular access rights for enrolladmin to edit users
Today every Enroll-Admin can change all authenticator of every users. This may cause a security issue. Which means that an enroll admin can take over an account from ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Helpdesk - Two-Eyes procedure to change authenticator from user
In regard to this Idea: https://ideas.microfocus.com/MFI/advance-authentication/Idea/Detail/15336 It would be good if there is an option to define which groups need a ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Kerberos Authentication for internal AD users
It would be great, if we could allow internal AD members Kerberos integrated authentication.
Comments (3) | by: Werner H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Igel ThinClient Support
It will be great if Igel ThinClients will be supported. We expect more than 10.000 Users which will need this.
Comments (2) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
TACACS support
It would be great to support TACACS integration, not only RADIUS. Many network devices today are configured using TACACS, not RADIUS.
Comments (1) | by: Hugo H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Add the ability to restrict authentication to only managed devices
Customer would like the ability to restrict mobile device (specifically Smartphone method) to ONLY devices that are currently being managed by an MDM solution. In this ...
Comments (4) | by: Matt W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Provide PKCS#11 (SmartCard) Libraries automatically
Please provide several PKCS#11 Libraries (Safenet[Gemalto,Axalt,...], OpenSC, CardOS, YubiKey, etc) automatically with the Device Service. This makes it easier to use ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Support RADIUS Authentication Methods CHAP and MS-CHAP
Our IT-Security Department forbid the usage of PAP because of severe security issues. Please support at least MS-CHAP, otherwise we can't use the AA RADIUS for our ...
Comments (1) | by: Christian B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
6
Support for RSA's Next Token Mode
RSA SecurID Access has Next Token Mode. This is where the user may be challenged to provide a second token code on their RSA keyfob after providing a first one due to ...
Comments (2) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
5
Allow for customization of labels when AD password is not sync
Typically, when you change your AD password, you have a message displayed after you successfully logon (OS or Mac Logon) which indicates: ‘"Enter password for sync". We ...
Comments (1) | by: Jerome M. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
5
Gernerate OTPs for other Services with the OTP Tool
Customers wish an ability to generate OTPs for other services with the OTP Tool.
Comments (3) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
4
Just in time import of SMS OTP and MAIL OTP when available on LDAP
When using LDAP attribute to autocreate SMS OTP and Mail OTP methods, they are imported with delay If a customer has alternive ways to enroll SMS OTP and Mail OTP ...
Comments (0) | by: Natan S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Advanced Authentication framework.
