• Votes

    1

    Customize Email Notification For Device Fingerprint

    We configured the NAM to send email notification when user is connected from unknown device. The problem is that the email that the NAM sends cannot be customized. The ...

  • Votes

    1

    Minimize exploit debugging by limiting the information returned to the ...

    During a recent penetration test again NAM 4.3.3 it was suggested that only generic error messages be made available via the browser when unexpected POST parameters are ...

  • Votes

    1

    Enable RBA Validate Tool / feature by default

    This is a great feature that is somewhat hidden since it is not enabled by default.

  • Votes

    1

    an option to ignore config store's status with IDS's health check

    Kerberos authentication is configured and used. Health check for IDS ("/nidp/app/heartbeat") returns 504 error when it cannot communicate with config store. It is because ...

  • Votes

    4

    Plugin or other helper to generate form fill (or field fill) scripts

    Regarding the ability to input username and passwords, on pages that are not contain forms, or are in general just difficult to work with. Products like for example ...

  • Votes

    5

    revert in ids

    It seems that we can only revert changes for Access Gateway. It would be very nice to have a revert changes option for ids as well.

  • Votes

    2

    Additional MAG options

    It would be beneficial to be able to specify Apache2 mod_header commands in the global or per proxy options. This would allow being able to specify new technology headers ...

  • Votes

    2

    Per Proxy Service Advanced Form Fill Options for javascript handling

    For simple standard HTML forms, the default form fill policies for NAM work great for SSO by auto-submiting the form post. Today, more and more if not most web ...

  • Votes

    2

    Web Server Health displayed next to web server in reverse proxy

    It would be useful to have web server health status icon next to the web server addresses in the proxy service list, under the reverse proxy. This would aid the ...

  • Votes

    3

    LDAP nested search support

    We would like to be able to do nested LDAP searches to get some 'linked' information for use as a SAML assertion attribute. At the moment we are only able to get LDAP ...

  • Votes

    3

    The UI to configure Web Servers to a proxy service

    I need to configure Web servers in proxy services with their DNS names not IP addressses. But when creating a proxy service newly, it is forced to set IP address, and ...

  • Votes

    4

    Access Gateway integration for HSM

    For security regulations, some banks and organizations with sensible data are in the need to integrate HSM modules to their infrastructure to store and manage their SSl ...

  • Votes

    2

    Detect Caps Lock

    The login_latest.jsp should include Caps Lock detection (e.g. https://www.codeproject.com/Articles/17180/Detect-Caps-Lock-with-Javascript) by default for the ...

  • Votes

    1

    Social Identity Attributes - selection and manipulation

    The list of Social Attributes is limited and does not align with the profile data from the main providers. for example, the basic profile data for LinkedIn. provides ...

  • Planned

    2

    Add OAuth Token Signing Algorithms

    NAM 4.4.0 supports token signing with RSA with SHAxxx (RS256, RS348, & RS512). Please add support for other algorithms such as HMAC using SHA (for compatibility support ...

  • Votes

    4

    Passwordless authentication

    It would be great if NAM could support passwordless authentication, specially for B2C use cases. This feature would benefit end users with a great user experience as the ...

  • Votes

    1

    More user friendly - Do not request the user to type his/her ...

    It would be good if NAM could provide a way to have a more user friendly approach and do not request the user to type his/her credential for a couple of days (configured ...

  • Votes

    9

    enhancement request for WS-Trust 1.3 Username/Mixed endpoint support

    Microsoft Intune can deploy an enrollment profile that enrolls iOS devices that were bought through the Device Enrollment Program (DEP) “over the air.”. Before you can ...

  • Votes

    3

    Self-service interface for end users to manage social authentications

    It would be very good if the end users could have a self-service interface to manage their social authentications. For instance I have already authenticated with Google ...

  • Votes

    1

    Simulate end user access as a help-desk user

    It would very helpful for help-desk users if they could simulate the end user access to simulate the access and better assist the end user with the error the person is ...