-
Planned
10
Determine RADIUS event by client IP address
In a situation where an environment has multiple RADIUS events, the RADIUS event that is intended to be used by the connecting RADIUS client is determined by the ...
Comments (3) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
10
Ability for caching shared (linked) authenticators
In reference to SR#101184179111 Today, AAF is not able to cache credentials on windows,linux, macos for users they are using shared (linked) authenticators. Please ...
Comments (2) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability to reorder chains within an event
Current situation: If you have an event with multiple chains and you want to change the order of the chains, you need to remove the chains (send them back to the ...
Comments (0) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Audit logging of configuration changes
It would be beneficial to have an audit log of configuration changes (repositories, methods, chains, events, endpoints, etc.) to have some accountability and for ...
Comments (5) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Add a "password never expires" option for the local user repository
We need this option for the local Admin Account. The local Admin Account's password expires as any other user account. Please add a "password never expires" option to the ...
Comments (0) | by: Christian B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability that an enroll admin can only manage users from specific ...
Today every enroll admin can set or change methods for every user. This can be a security risk. We would like to have the ability that an enroll admin can only manage ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
9
Allow enroll admins the ability to unlock user accounts
When a user is locked out according to the Lockout policy, it would be desirable for someone with enroll admin role to be able to unlock a user. Typically unlocking users ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability to deactivate self enrollment for specific methods
In some cases it is desirable if a admin can configure that it is not possible for an user to (over)write specific methods in the self enrollment. For more flexibillity ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
1:n matching for Fingerprint
Requested by: several customers Currently 1:n matching is supported for the card and PKI methods. Our customers also want this for fingerprint authentication as well.
Comments (6) | by: Hauke B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
8
Smartphone Enrollment - Provide ways to seed Username and Description
When user scans the QR they are prompted to enter username and description. Would like ability to customize where you use: Username: %REPO%\%USERNAME% Description: ...
Comments (1) | by: Kevin P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
AA should allow for an intelligent combination of Fingerprint and ...
AA should allow for an intelligent combination of Fingerprint and Windows Hello within a Chain, in addition to also some other unrelated method like LDAP Password. By ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Should be able to define multiple CSS/branding customizations on the ...
Should be able to define multiple CSS/branding customizations on the same AA webserver, auto-enforced by the AA webserver based on the incoming HTTP Request “Host” ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
AA Admin console’s GUI to perform a full AA data backup should, in ...
AA Admin console’s GUI to perform a full AA data backup should, in addition to the already upcoming AA feature to make the backup a schedulable item in the GUI, also ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Use SSL for AD repository DNS discovery
When using DNS discovery for AD repositories, there should be an option to add them as SSL-enabled on port 636. Today when using DNS discovery for AD repositories, they ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Customize RADIUS Reply-Messages per method in a chain
Applications that correctly implement RADIUS will show the Reply-Message value sent from the AAF server when authenticating with a chain. Right now, the Reply-Message ...
Comments (2) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Deleting a Smartphone authenticator in the NetIQ app deletes the ...
Current situation: If you delete a Smartphone authenticator from the Self-Service portal/server-side, the Smartphone authenticator on your NetIQ app is deleted. However, ...
Comments (0) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
7
Allow Windows Client (and Linux/Mac) to set locale in ...
We have the need for certain Windows clients to have a specific locale set in the config.properties file. This should override the OS locale.
Comments (0) | by: Dennis R. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Validate correct password when saving repository settings
Every time you adjust the settings of a repository, you are required to provide a password for the user you are connecting as however there is no check to see if the ...
Comments (5) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Combine some AAF client login screens the login process is to heavy
AAF login screen 1 username input AAF login screen 2 chain selection input AAF login screen 3 password input AAF login screen 4 other method input For example ...
Comments (1) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Let's change eToken/Smartcard password on credential provider
Now there is no possibility to change the eToken password at the credential provider. if the password is expired the user has to phone the Helpdesk to create a emergency ...
Comments (2) | by: Markus D. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Advanced Authentication framework.
