Skip to Main Content
Cumulocity IoT Feedback Portal
ADD NEW FEEDBACK

Authentication & Authorisation

Showing 24 of 408

Automatically disable users if not logged in since time period

Dears, this is somehow related to Request: C8YCORE-I-513 https://cumulocityiot.ideas.aha.io/ideas/C8YCORE-I-513 But, here I would like to request an automated function, that disables users after a defined time period of inactivity. Time period can...
Guest almost 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Likely to support/improve

Allow custom properties in SSO as is possible in the user api

Currently you can set some fields through SSO like name email id etc. You can not set custom properties like language preference unit preference. If you do not use SSO you can set custom properties on users.
Tom Michiels about 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

OAuth2 authorization response should properly handled error information

Hi, When using an external OAuth2 authorization server in Cumulocity the authorization server may deny access or fail to whatever reason the authorization request. In this case, according to RFC 6479, the authorization sever will redirect the user...
Florian Huber over 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Planning / planned

OAuth 2 Client Credentials Support

Hi, We have the current situation: The primary actor in this scenario on our side is an API, not a human being. We cannot use Basic or OAuth2 Internal authentication due to security requirements of our security department. We would like to be able...
Florian Huber almost 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Clarification needed

For users created via SSO, display a more user-friendly value in the upper right corner (where the user menu is).

Sometimes the value of the User ID for users created via SSO is just a UUID value, i.e. some random string. This way it is difficult to understand which is the currently active user. Ideally a name or an email address would be displayed, similar t...
Guest over 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Future consideration

Users need to be informed once his password is changed by admin user.

Currently, user is not informed once his password has been changed by admin user. It is observed that when admin user changes password of another user in the platform, user is not informed about the operation. Detailed Steps. 1. Navigate to ...
Guest over 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Unlikely to support

Map ID Token Parameters in SSO configuration

In the current SSO configuration in C8Y it is only possible to map the user ID claim from the Access token. The first issue is that if the user ID is not a human readable value, then in the C8Y header menu where the user name is displayed, the non...
Guest about 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 4 Likely to support/improve

Allow for custom authentication for microservices end-points and frontend applications (disable Cumulocity authentication)

We would like to deploy new frontend application and microservices using their own authentication. Therefore we would need to have an option to disable Cumulocity authentication on the microservice endpoints and frontend application artifacts.
Peter Gaspar over 4 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

TFA Settings - avoid invalid entries like 0minutes

- Admin App > Settings > Authentication > TA Settings - avoid inputs like "0" minutes for limit token and limit verification code, because user could locked out himself if het set 0 minutes
Guest almost 5 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Future consideration

Unlocking tenant admin's account

When a tenant admin’s account is locked due to several wrong password attempts, it's not possible to unlock it via UI. Support team says that it should be done on DB by ops team. I believe it should be done on UI by management tenant's admin. Solu...
Guest over 5 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration