Skip to Main Content
Cumulocity IoT Feedback Portal
ADD NEW FEEDBACK

Authentication & Authorisation

Showing 24 of 408

Unlocking tenant admin's account

When a tenant admin’s account is locked due to several wrong password attempts, it's not possible to unlock it via UI. Support team says that it should be done on DB by ops team. I believe it should be done on UI by management tenant's admin. Solu...
Guest over 5 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

Automated setup of SSO config for tenants

Currently, there is no documented and supported API to setup SSO. The only supported way to update the SSO config is through the UI. The UI writes the configuration into a json object. The challenge with this approach is that as soon as we change ...
Nikolaus Neuerburg over 5 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Unlikely to support

As Utonomy I want Intrusion detection and virus scanning

Utonomy wants to have a roadmap for this feature. Thomas is already testing a solution with PaloAlto. We need a budget for PaloAlto (3000-6000€ per month). Maybe we can ask Utonomy if they are willing to pay for that feature?
Jens Wildhagen over 5 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Partially supported already

Support User Functionality at Enterprise Tenant Level also

I raised two requests for support user functionality to enable a couple of business requirements for OEM customers like us. 1. We planned to leverage SaaS enterprise tenants in some regions compared to dedicated deployment in the NA region. We are...
Venkatesu Punugupati 6 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 4 Future consideration

Add the customizable placeholder for password change in Enterprise tenant

Hi, We have a request to add placeholder that customer can customize for password change. For security reason, the token for password change cannot be obtained by API. The token is only available in the following placeholder set in Enterprise ...
Guest 7 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

Enable read-only access to certificates

We have multiple teams using certificates for mutual authentication. During their development it would be very useful for them to be able to see the trusted certificates. Right now I can grant them admin rights to certs but that lets them change t...
Dave Presuhn 8 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

Enable quick means to stop communication with devices

If the platform gets compromised, right now the only way to stop devices from communicating is to temporarily disable device communications and then re-enable when the compromise is resolved. That can take time with a large fleet - during which th...
Dave Presuhn about 1 year ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Already supported

Add PKCE to single sign-on

Add support for PKCE (https://www.rfc-editor.org/rfc/rfc7636) in the authorisation code grant flow when configuring single sign-on as an authentication method. This is related to C8YCORE-I-311.
Guest over 1 year ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

Restrict admin console to certain IP address space

By restricting access to the admin portal (Cockpit, device management, etc) to certain IP address ranges, we can restrict admins to only accessing admin functions while on our corporate network. This will improve security by making the admin apps ...
Dave Presuhn almost 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

OAuth2 authorization response should properly handled error information

Hi, When using an external OAuth2 authorization server in Cumulocity the authorization server may deny access or fail to whatever reason the authorization request. In this case, according to RFC 6479, the authorization sever will redirect the user...
Florian Huber over 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Planning / planned