Cumulocity IoT Feedback Portal
ADD NEW FEEDBACK

Authentication & Authorisation

Showing 20 of 372

Restrict admin console to certain IP address space

By restricting access to the admin portal (Cockpit, device management, etc) to certain IP address ranges, we can restrict admins to only accessing admin functions while on our corporate network. This will improve security by making the admin apps ...
Dave Presuhn about 1 year ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

TFA Settings - avoid invalid entries like 0minutes

- Admin App > Settings > Authentication > TA Settings - avoid inputs like "0" minutes for limit token and limit verification code, because user could locked out himself if het set 0 minutes
Guest about 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

OAuth2 authorization response should properly handled error information

Hi, When using an external OAuth2 authorization server in Cumulocity the authorization server may deny access or fail to whatever reason the authorization request. In this case, according to RFC 6479, the authorization sever will redirect the user...
Florian Huber about 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Planning / planned

Unlocking tenant admin's account

When a tenant admin’s account is locked due to several wrong password attempts, it's not possible to unlock it via UI. Support team says that it should be done on DB by ops team. I believe it should be done on UI by management tenant's admin. Solu...
Guest over 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

Automated setup of SSO config for tenants

Currently, there is no documented and supported API to setup SSO. The only supported way to update the SSO config is through the UI. The UI writes the configuration into a json object. The challenge with this approach is that as soon as we change ...
Nikolaus Neuerburg over 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Unlikely to support

As Utonomy I want Intrusion detection and virus scanning

Utonomy wants to have a roadmap for this feature. Thomas is already testing a solution with PaloAlto. We need a budget for PaloAlto (3000-6000€ per month). Maybe we can ask Utonomy if they are willing to pay for that feature?
Jens Wildhagen over 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Partially supported already

Users need to be informed once his password is changed by admin user.

Currently, user is not informed once his password has been changed by admin user. It is observed that when admin user changes password of another user in the platform, user is not informed about the operation. Detailed Steps. 1. Navigate to ...
Guest about 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Unlikely to support

Allow for custom authentication for microservices end-points and frontend applications (disable Cumulocity authentication)

We would like to deploy new frontend application and microservices using their own authentication. Therefore we would need to have an option to disable Cumulocity authentication on the microservice endpoints and frontend application artifacts.
Peter Gaspar about 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

Backend endpoint that returns the Azure AD access token

I want to be able to retrieve the Azure AD token from Cumulocity so that I can use it to place requests against external services which cannot deal with the Cumulocity internal token.
Nikolaus Neuerburg over 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Unlikely to support

Be able to deactivate creation and usage of local user accounts in Cumulocity

When using SSO, for security and governance reasons it shouldn't be possible to create or use local user accounts.
Nikolaus Neuerburg over 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Future consideration