-
Votes
9
Ability that an enroll admin can only manage users from specific ...
Today every enroll admin can set or change methods for every user. This can be a security risk. We would like to have the ability that an enroll admin can only manage ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
9
Allow enroll admins the ability to unlock user accounts
When a user is locked out according to the Lockout policy, it would be desirable for someone with enroll admin role to be able to unlock a user. Typically unlocking users ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
9
Ability to deactivate self enrollment for specific methods
In some cases it is desirable if a admin can configure that it is not possible for an user to (over)write specific methods in the self enrollment. For more flexibillity ...
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Allow for customization of labels when using TOTP
Typically, when you enroll a device using a TOTP authenticator app like Google's or Microsoft's, after you enroll, the account shows up with the name of the application ...
Comments (4) | by: Matt W. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
8
IPv6 support
We are running in a dual stack environment and we need AAF as a product to support IPv6 in addition to IPv4.
Comments (0) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Planned
8
Extend Radius server by PEAP support
Currently Radius server supports only PAP while new (esp. mobile) devices use PEAP. It's the reason customers may not use AA for Radius & mobile device combination and ...
Comments (1) | by: Dariusz L. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
8
1:n matching for Fingerprint
Requested by: several customers Currently 1:n matching is supported for the card and PKI methods. Our customers also want this for fingerprint authentication as well.
Comments (6) | by: Hauke B. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Planned
8
Smartphone Enrollment - Provide ways to seed Username and Description
When user scans the QR they are prompted to enter username and description. Would like ability to customize where you use: Username: %REPO%\%USERNAME% Description: ...
Comments (1) | by: Kevin P. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Support AD Global Catalog in AAF
As customers tend to have many ADs in their forest, we need support for global catalog functionality for AAF by using LDAPS on 3269. ...
Comments (0) | by: Anton H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
8
AA should allow for an intelligent combination of Fingerprint and ...
AA should allow for an intelligent combination of Fingerprint and Windows Hello within a Chain, in addition to also some other unrelated method like LDAP Password. By ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Should be able to define multiple CSS/branding customizations on the ...
Should be able to define multiple CSS/branding customizations on the same AA webserver, auto-enforced by the AA webserver based on the incoming HTTP Request “Host” ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
AA Admin console’s GUI to perform a full AA data backup should, in ...
AA Admin console’s GUI to perform a full AA data backup should, in addition to the already upcoming AA feature to make the backup a schedulable item in the GUI, also ...
Comments (0) | by: brian r. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Use SSL for AD repository DNS discovery
When using DNS discovery for AD repositories, there should be an option to add them as SSL-enabled on port 636. Today when using DNS discovery for AD repositories, they ...
Comments (1) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
8
Customize RADIUS Reply-Messages per method in a chain
Applications that correctly implement RADIUS will show the Reply-Message value sent from the AAF server when authenticating with a chain. Right now, the Reply-Message ...
Comments (2) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Add integration with Cisco VPN as part of the AAF documentation
Similar to OpenVPN, we have done a few integrations between AAF and Cisco AnyConnect (VPN) so we could have these steps as part of the documentation for AAF and we could ...
Comments (3) | by: Bruno U. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Support FIDO 2 for Windows Authentication
AAF supports only FIDO2 for webauthentication. Please add support for FIDO2 authentication in the windows login.
Comments (1) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Other
-
Votes
7
Deleting a Smartphone authenticator in the NetIQ app deletes the ...
Current situation: If you delete a Smartphone authenticator from the Self-Service portal/server-side, the Smartphone authenticator on your NetIQ app is deleted. However, ...
Comments (0) | by: Tim S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Configuration
-
Votes
7
Ability to enroll Windows Hello Fingerprint / Face Recognition ...
Provide the ability to easy enroll the Windows Hello "Face Recognition, Fingerprint, etc" directly with the self enrollment portal. Provide also the ability to do this ...
Comments (0) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
-
Votes
7
Helpdesk - Enhancements
1) User Logs: Show the IP-Adress from the accessing Radius Client (192.168.0.20, which can be a VPN Server, etc.) which sends the authentication request to AAF As an ...
Comments (0) | by: Kevin S. | over a year ago | Last activity over a year ago | Status changed over a year ago | Dashboards/Visualization
-
Votes
7
Lets encrypt integration
Not just for AAF, but also Filr etc it would be great to have support / automation possibility to use lets encrypt certificates.
Comments (1) | by: Werner H. | over a year ago | Last activity over a year ago | Status changed over a year ago | Integrations
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
We love to hear your ideas for improving Advanced Authentication framework.
