• Votes

    3

    Button to disable OAuth client

    Hi, customer would like to have the chance to enable/disable on his needs the OAuth Client defined under: IDP > OAuth and OpenID Connect > Client Application. This to ...

  • Votes

    1

    Set CRL expiration date on Admin Console

    Hello, When using X509 authentication class, and class is configured to use CRL validation, the class keep CRL data on cache, until the CRL is expired. We want to be ...

  • Votes

    1

    Access Manager Analytics Dashboard - OIDC enhancements

    The graph : "Identity Server Accessed Applications" only counts SAML applications, not OICD. It would be appropriate to include accessed OIDC applications. The graph : ...

  • Votes

    1

    Add XSS detection alert in auditing and LOG

    Actually you must enable debug log level to see XSS detection in Access Gateway log. Customers are asking to be able to see these alerts in NAM audit and in LOG without ...

  • Votes

    2

    could the "mobile access" supply the function of Global Language ...

    Like the SSPR login page It supply the "Locale Selection" to supply the function of Global Language support choice. Does the Mobile Access could be supply the function& ...

  • Votes

    2

    Access to the client context in virtual attributes queries

    This feature is already available in almost all the other products (Auth0, ForgeRock, Gluu, Keycloak). It is useful to have the client context when you query external ...

  • Votes

    1

    AccessManager Brokering Groups: managing via APIs

    AccessManager Brokering Groups are manageable via the GUI. However, API's for managing the B.Groups are missing. Therefore it's not possible to automate the B.Groups/ ...

  • Planned

    1

    Appliance options for all components

    With MF seperating from Suse, updates for SLES (non NAM registered components) require a SuSE subscription, which means another vendor to manage. It would be great if all ...

  • Votes

    3

    Make MAG Soft Timeout Configurable

    When configuring the IDP server, a session timeout parameter is available that defines a session inactivity timer for users authenticating to the IDP server. This timeout ...

  • Votes

    2

    Fix format Token Introspect EndPoint URI in OAUTH/OIDC

    The format of the Token Introspect EndPoint has an extra v1 which is placed at a strange (wrong) place https://server/nidp/oauth/v1/nam/introspect I would expect ...

  • Votes

    2

    Request support for nameid-format:entity

    A customer has a Service Provider that requires support for nameid-format:entity which is described in Core saml2 specs in section 8.3.6 ( ...

  • Votes

    1

    OAuth 2.0 Access Token Does Not Expire Unless Refresh Token Is Revoked ...

    Allow for Non-Expiring/NO Timeout Access Tokens. Keep access token valid until the related refresh token is revoked.

  • Votes

    2

    Conditional user interaction during logon

    Allow a custom web page to be made visible to users after submitting the initial NAM login page form, to allow messages and directions to appear for users. It will then ...

  • Votes

    1

    VMware Horizon View Offline Authentication support

    Currently, VMware VDI Horizon doesn't support offline authentication. It would be great to see this option. Werner

  • Votes

    17

    Support google recaptcha v3

    Access Manager password form class still support only Google recaptcha v2 which will be deprecated soon. It will be great to add support for Gogle recpatcha v3 in NAM ...

  • Votes

    7

    licensed user count

    Would be nice for customer to have availability to see the following: 1. Maximum number of Licensed Users (based on license) 2. List of Users that have logged in 3. ...

  • Votes

    3

    Support for AAF Authentication Methods as Kerberos Fallback Classes

    AAF Authentication is not available with the current supported NAM product line (NAM 4.4 / 4.5)

  • Votes

    1

    Allow NAM's WSFed/WSTrust to use Kerberos based SSO

    WSTrust with Office 365 currently has a major limitation in that only the the only default method that works is the Secure Name/Password-Form method. This means that ...

  • Votes

    1

    Password fetch mechanism / establish Session with Access Token

    Use case: a) Application A only capable of FormFill / Basic Auth behind AG b) Password synchronized between Userstore and Application A c) OAuth Client O wants to fetch ...

  • Votes

    4

    Integrate with SSPR OTP

    Would be awesome if the included OTP class in NAM could use the value stored by SSPR, we use SSPR for helpdesk actions and for users to manage their password, having ...