• Votes

    1

    REST-API Allow other authentication methods for "Destroy endpount"

    Today it is only possible to use PASSWORD:1 for Destroy Endpoint. We would like to have the ability to use other Methods like, LDAP_PASSWORD:1, TOTP:1, HOTP:1 etc.

  • Votes

    5

    Helpdesk - Two-Eyes procedure to change authenticator from user

    In regard to this Idea: https://ideas.microfocus.com/MFI/advance-authentication/Idea/Detail/15336 It would be good if there is an option to define which groups need a ...

  • Votes

    5

    Helpdesk - Granular access rights for enrolladmin to edit users

    Today every Enroll-Admin can change all authenticator of every users. This may cause a security issue. Which means that an enroll admin can take over an account from ...

  • Votes

    5

    Igel ThinClient Support

    It will be great if Igel ThinClients will be supported. We expect more than 10.000 Users which will need this.

  • Votes

    3

    Enable ability to customize AAF login page

    For AAF login page would like to be able to change the text “User name” to “Email Address” and “REPOSITORY\user” to Email Address” since we want the users to use email ...

  • Votes

    1

    Windows app similar to Smartphone App

    The request is from a customer whos users doesnt all have smartphones but who would still like the "Accept" "Decline" functionality in a Windows app. Yes we have the ...

  • Votes

    4

    Check if firewall ports are open

    We would prefer an Option to check if needed Firewall Ports are open. In our opinion this check-up can be located in the Management Consol of AAF. Additionally there ...

  • Votes

    8

    Support AD Global Catalog in AAF

    As customers tend to have many ADs in their forest, we need support for global catalog functionality for AAF by using LDAPS on 3269. ...

  • Votes

    2

    HelpDesk Portal - Search for Yubikey via S/N

    It would be helpful for our helpdesk personnel to be able to search for a yubikey via the serial number to see the user who has it assigned.

  • Votes

    1

    Enable user exception group list in Geo-Fencing

    For example for “Singapore” & “Malaysia” group = user1, user2, user3, but for “China” group = user1 only & user2, user3 is deny access.

  • Votes

    1

    Ability to reorder reports on Reports portal

    Today they are created and listed in order of creation. Would be nice to have ability alphabetize or even reorder from Admin portal under Reports.

  • Votes

    4

    Redesign the TOTP flow for an enduser

    We are working with version 6.1.x The NAAF screens are very technical for an end user. Make security easy for those who are non technical please. Ask a UX-er to help ...

  • Votes

    3

    Method: Password Policy

    An Option to set different Password Policy for each user Group, if the Password set as a chain from MFA such as Pin + OTP. We want able to set for the UserGroups a Simple ...

  • Votes

    5

    Disable/remove save button when (smartphone) method is enrolled, ...

    The save button is confusing for users if the method is already enrolled. Deleting an re-adding the method is easier to explain to users, especially if "Enroll TOTP ...

  • Votes

    2

    messagebird

    The AAF 6.2 product contains an SMS TOTP method preconfigured for MessageBird. Which is great. However, the method uses the "OLD HTTP-API_v1" as MessageBird refers to ...

  • Votes

    1

    Authenticator App: Add Search Field

    If you have multiple TOTP registered authenticators in Authenticator App you have to scroll like Thor to find the TOTP you need to authenticate. I would suggest to add a ...

  • Votes

    4

    Don't include Smartphone enrollments as part of backed up app data for ...

    This behavior was observed when a user migrated from an older iPhone to a new iPhone but may also apply to Android devices. Current situation: The Smartphone enrollments ...

  • Votes

    1

    Use smartphone NFC to read Mifare Classic 1K card as a factor

    Mobile user brings only smartphone and a Mifare Classic 1K card Instead of putting all factor (smartphone method, SMS or email) in the single device It is a good idea to ...

  • Votes

    1

    Use smartphone NFC to read Mifare Classic 1K card as a factor

    Mobile user brings only smartphone and a Mifare Classic 1K card Instead of putting all factor (smartphone method, SMS or email) in the single device It is a good idea to ...

  • Votes

    3

    Allow multifactor when enrolling smartphone via /smartphone/enroll url ...

    As an Administrator of AAf, admin should be able to add MFA for direct smartphone enrollment url as well. Currently, the product (AAf 6.2) support direct smartphone ...