-
Planned
14
Periodically export database backup to network location
Right now you can manually export the database backup and then download it to your local machine. In the future, it is desirable that the database would automatically ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
12
MFA Smartphone native NetIQ App avoid additonal info after QR code ...
- Customer uses AAF Version: 5.6 and Access Manager 4.4. - Using the current version, an additonal info entry is offered after the scan of the QR code for an ...
Comments (3) | by: Karl P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
11
Certificate filter - Hide expired certificates
Please hide expired certificates in the "certificate list" during the PKI enrollment
Comments (2) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
10
AA should have an option for customers to choose to completely ...
AA should have an option for customers to choose to completely eliminate the mandatory Endpoint trust relationship mechanism built into AA thick clients (Win/Mac/Linux). ...
Comments (1) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
10
Determine RADIUS event by client IP address
In a situation where an environment has multiple RADIUS events, the RADIUS event that is intended to be used by the connecting RADIUS client is determined by the ...
Comments (3) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
10
Ability for caching shared (linked) authenticators
In reference to SR#101184179111 Today, AAF is not able to cache credentials on windows,linux, macos for users they are using shared (linked) authenticators. Please ...
Comments (2) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability to reorder chains within an event
Current situation: If you have an event with multiple chains and you want to change the order of the chains, you need to remove the chains (send them back to the ...
Comments (0) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Audit logging of configuration changes
It would be beneficial to have an audit log of configuration changes (repositories, methods, chains, events, endpoints, etc.) to have some accountability and for ...
Comments (5) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Add a "password never expires" option for the local user repository
We need this option for the local Admin Account. The local Admin Account's password expires as any other user account. Please add a "password never expires" option to the ...
Comments (0) | by: Christian B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability that an enroll admin can only manage users from specific ...
Today every enroll admin can set or change methods for every user. This can be a security risk. We would like to have the ability that an enroll admin can only manage ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
9
Allow enroll admins the ability to unlock user accounts
When a user is locked out according to the Lockout policy, it would be desirable for someone with enroll admin role to be able to unlock a user. Typically unlocking users ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability to deactivate self enrollment for specific methods
In some cases it is desirable if a admin can configure that it is not possible for an user to (over)write specific methods in the self enrollment. For more flexibillity ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
1:n matching for Fingerprint
Requested by: several customers Currently 1:n matching is supported for the card and PKI methods. Our customers also want this for fingerprint authentication as well.
Comments (6) | by: Hauke B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
8
Smartphone Enrollment - Provide ways to seed Username and Description
When user scans the QR they are prompted to enter username and description. Would like ability to customize where you use: Username: %REPO%\%USERNAME% Description: ...
Comments (1) | by: Kevin P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
AA should allow for an intelligent combination of Fingerprint and ...
AA should allow for an intelligent combination of Fingerprint and Windows Hello within a Chain, in addition to also some other unrelated method like LDAP Password. By ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Should be able to define multiple CSS/branding customizations on the ...
Should be able to define multiple CSS/branding customizations on the same AA webserver, auto-enforced by the AA webserver based on the incoming HTTP Request “Host” ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
AA Admin console’s GUI to perform a full AA data backup should, in ...
AA Admin console’s GUI to perform a full AA data backup should, in addition to the already upcoming AA feature to make the backup a schedulable item in the GUI, also ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Use SSL for AD repository DNS discovery
When using DNS discovery for AD repositories, there should be an option to add them as SSL-enabled on port 636. Today when using DNS discovery for AD repositories, they ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Customize RADIUS Reply-Messages per method in a chain
Applications that correctly implement RADIUS will show the Reply-Message value sent from the AAF server when authenticating with a chain. Right now, the Reply-Message ...
Comments (2) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Deleting a Smartphone authenticator in the NetIQ app deletes the ...
Current situation: If you delete a Smartphone authenticator from the Self-Service portal/server-side, the Smartphone authenticator on your NetIQ app is deleted. However, ...
Comments (0) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Advanced Authentication framework.
