Cumulocity IoT Feedback Portal
ADD NEW FEEDBACK

Authentication & Authorisation

Showing 20 of 372

Automatically disable users if not logged in since time period

Dears, this is somehow related to Request: C8YCORE-I-513 https://cumulocityiot.ideas.aha.io/ideas/C8YCORE-I-513 But, here I would like to request an automated function, that disables users after a defined time period of inactivity. Time period can...
Guest about 1 year ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Likely to support/improve

Password-change UX should consider server-synchronization

When a user changes the password (today in Cumulocity v10.15), the UX provides a success-message of the change without any conditions. However, the password may not be usable for some additional minutes as the change has not been synchronized acro...
Christoph Marschall 11 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Likely to support/improve

Enable quick means to stop communication with devices

If the platform gets compromised, right now the only way to stop devices from communicating is to temporarily disable device communications and then re-enable when the compromise is resolved. That can take time with a large fleet - during which th...
Dave Presuhn 6 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Already supported

Device Certificate Authentication - Support CRL/OCSP

In devicemanagement, one can onboard devices with a certificate but after onboarding, there is no possibility to authenticate with certificates. It would be a big added value for security and management of our clients, since no credentials would b...
Guest almost 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Planning / planned

Ignore Case on Username Login

When adding new users, we normally copy the email address of a person and paste it directly and i have seen this cause confusion when that user logins in for the first time. Their email may be "JoeDoe@company.com", and becasue the username field i...
Guest almost 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Planning / planned

Allow custom properties in SSO as is possible in the user api

Currently you can set some fields through SSO like name email id etc. You can not set custom properties like language preference unit preference. If you do not use SSO you can set custom properties on users.
Tom Michiels over 1 year ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

For users created via SSO, display a more user-friendly value in the upper right corner (where the user menu is).

Sometimes the value of the User ID for users created via SSO is just a UUID value, i.e. some random string. This way it is difficult to understand which is the currently active user. Ideally a name or an email address would be displayed, similar t...
Guest about 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Future consideration

Add PKCE to single sign-on

Add support for PKCE (https://www.rfc-editor.org/rfc/rfc7636) in the authorisation code grant flow when configuring single sign-on as an authentication method. This is related to C8YCORE-I-311.
Guest about 1 year ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

OAuth 2 Client Credentials Support

Hi, We have the current situation: The primary actor in this scenario on our side is an API, not a human being. We cannot use Basic or OAuth2 Internal authentication due to security requirements of our security department. We would like to be able...
Florian Huber about 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Clarification needed

Map ID Token Parameters in SSO configuration

In the current SSO configuration in C8Y it is only possible to map the user ID claim from the Access token. The first issue is that if the user ID is not a human readable value, then in the C8Y header menu where the user name is displayed, the non...
Guest over 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 4 Likely to support/improve