Need the ability to generate the signing and encryption certificates used by SAML, with custom subject name/CN. The certificates that get generated all have the CN as webauth signing or webauth encryption. We need to have the ability to put the hostname...
Add something to the Advanced Authentication dashboard that shows the number of users who have manually enrolled one or more authentication methods. Alternatively, create a report option that can be used on the "reports" page that will show the number...
AAF , Configuration , Filters , Idea , Integrations , User Accounts , user administration
Status: New Idea
New Idea on 31 Aug 2021
Today in AA you can only define an LDAP "Base DN"
To better support complex LDAP hierarchies and the diverse sorts of user communities under them them (service accounts, employees likely spread across multiple geographic OU's, customers, suppliers...
The standard SMS OTP and Email OTP methods do not currently provide any type of error message when the OTP period is exceeded and the user inputs the expired OTP, instead of providing any type of error message, it just sends a new SMS/Email OTP again...
CyberArk is Privileged Access Management software, and we want to further integrate it with AA in the following manner:
- CyberArk is configured to use AAF for authentication via saml
1. User connects to the web interface of CyberArk...
We would like a more granular interface for RADIUS. Specifically we would like to be able to customize the values of certain RADIUS attributes. i.e.- Field 76 according to RFC 2869 is the Prompt attribute. A value of 0 means No echo and the value 1 means...
We are using NetIQ Advanced Authentication(AWS) for MF Customer. Currently, NetIQ AA supports only FTP to backup the "aubak*.cpt" files.
Could you please add SFTP support as an enhancement as most of the customers are looking for secured data...
AAF , Cluster Services , Configuration , REST API
Status: New Idea
New Idea on 18 Aug 2021
if all DB servers in a site are down, the webservers (in that site) should stop responding to Auth requests:
that would automatically trigger the (some) loadbalancer Failover.
(and it would make sense too...
We would like to have the additional option to enter an OATH OTP token without an import file. Since the only required fields are serial number and seed, can a manual import button be added to the /admin/methods/oath/tokens UI to import one OTP at a...
The NetIQ Advance Authentication android app for the Smartphone authentication method is available only on the Google Play Store, but there are many android users with no access to Google Play Store, such as:
users in China (1.4 billion) and some...
In the current version (184.108.40.206), only Google reCAPTCHA v2 implementation is possible. The invisible v3 is much more user friendly than v2.
It would be nice if there was an option for Google reCAPTCHA v3 as well.
The Advanced Authentication VDA Client already solves a lot of health care use cases, but it could do even more if, besides the Windows VDA Client, also a VDA Client for Linux would be available. Especially when this can run on thin clients with a Linux...
Currently a geo-fence is tied to an event, I'd like to see this also tied to the location attributes of the user (office, home, or other). This allows for greater flexibility in geo-fences for staff and offices.
Secondly, can I request that...
Configuration , Customization options , Idea , Integrations , saml attribute , User Accounts , UX
Status: New Idea
New Idea on 1 Jul 2021
Right now (as 220.127.116.11) the only option to send as the nameID for an SAML2 SP event are the following:
Persistent/Transient (Unsure which one as it's not labeled if nothing is selected)
I feel like this is...
We need the ability to fetch an attribute from one of our repositories and rename the attribute in the SAML assertion. i.e.- An Active Directory Repository would have SamAccountName with a user's login id and we need that same value (login id) to be...
Using VDA with Citrix Workspace works great! But currently by closing VDA, the Citrix session does a session logout instead of a session disconnect. Is it possible to configure a session disconnect instead of a logout for VDA Citrix?