• Filter Attribute from Radius Client

    Hi, our client have a Huawei Firewall model USG6725F and when we tried to integrate it with radius but when we test it shows this error uwsgi.log 2024-10-23 09:37:14 (UTC-0500) ERROR [aucore.views] Public HTTP error: status = 499 Unknown Client…
  • Advanced Authentication 6.4.3.1 JSON SMS sending

    Hi! We wanted to setup new JSON sending of SMS in AA, but have found an issue that is stopping us from implementing. The phone number placeholder is not replaced with actual phone number and is sending an empty string to server. Our JSON parameter…
  • Erratic behaviour with repository

    We are experiencing an issue with user access to a repository that is behaving erratically . This repository has been functioning correctly until now. Other systems are accessing and querying the LDAP without any issues, but from our deployment, we…
  • unable to generate AA SAML metadata

    Hi, im trying to use AA as IDP, to generate SAML metadata from policies>web authentication, ive put in the AA server IP and trying to download the SAML2.0 metadata and got error. Below is the error { "Fault":{ "Code":{ "Value":"Sender", "Subcode…
  • Shortcuts "Enrollment" and "Helpdesk" doesn´t work properly after updated to 6.4.2 versión.

    We upgraded the console from version 6.4.1 to 6.4.2 but we are experiencing issues with enrolling users and querying methods configured for users. Whe want to check a user, but the console shows us the message "Access has been denied." I would greatly…
  • Custom messages from enroll portal

    Hi, we like to change some messages (red square) to spanish translation from the enroll portal, where can we do this customization? thanks for the help
  • Integrating Advanced Authentication with NetIQ Access Manager Contract

    I am just getting started with trying to create a multi-factor authentication solution between Advanced Authentication and Access Manager, and I'm kind of coming in blind, since I am not very familiar with these two products; another department manages…
  • Can be used Security Key NFC by Yubico for Windows Desktop Logon ?

    or I need YubiKey 5 ? I'm not sure, which can be used with AAF. Thanks for advice.
  • Bluetooth eSec in Advanced Authentication - re-register enrolled authenticators?

    I have one source telling me that once we update our backend of Advanced Authentication to 6.4.2, any previous bluetooth device enrolled as an authenticator, needs to be re-registered again in the Self Service portal in order to be used as a bluetooth…
  • Roadmap for bluetooth to return to the macOS client of NetIQ Advanced Authentication

    Hello, What is the roadmap for a bluetooth option to return to the macOS and Linux client of NetIQ Advanced Authentication. As I understand it, the 'old' bluetooth way will never come back. In the new 6.4.2 Advanced Authentication, bluetooth eSec…
  • Advanced Authentication Rest API creating users

    Dear community, I am trying to create user in local database of AA. I am using AA 6.4.1.1. In rest documentation I found user creation method with HTTP POST and URL /scim/v2/Users. Currently I am trying to create users and am getting error 404…
  • REST - API; DoLogon - LDAP_PASSWORD_UNDEFINED

    Hello, I'm trying to do the "sample Authentication flow" according to the documentation ( https://www.netiq.com/documentation/advanced-authentication-64/apidoc/data/apidoc.html ) What is working: Create Endpoint Create Endpoint Session …
  • Advanced Authentication External URL

    Dear Community, We have installed cluster of two AA servers (aa.domain.si and aa2.domain.si) and configured load balancing over Access Manager URL aa.domain.si. Both servers are available over AM, ut the thing that keeps happening is an error when…
  • Configuration problem SMS sender

    Hello, I would like to suggest changing the SMS sending configuration page in your NetIQ AA software (Policies -> SMS sender -> Sender service - General). I can't set up an SMS gateway with our service provider, T-Mobile. You require providing a username…
  • Can not remove custom localization

    Dear Comunity, in Advanced Authentication version 6.4.1.1 we have created custom localization in previous versions. Now We want to remove this localization and replace it with new one. Localization settings we are trying to edit are in "Policies…
  • AA returning additional Radius attributes on successful authentication

    AA 6.4.1 I've got MFA AA Radius working pretty much, to NTRADPING anyway...not the Aruba switches though...the Aruba switches are not authenticating admin users as they switch expects "Radius:IETF:Service-Type:=6" or "Aruba-Priv-Admin-User" VSA. …
  • Deprecated Bluetooth Method (Advanced Authentication 6.4 SP1): permanent or temporary?

    Hi, In NetIQ Advanced Authentication 6.4 Service Pack 1, the Bluetooth Method has been deprecated. I understand there are security issues with that, but we have waited with updating it, since a lot of our 4000 users use the Bluetooth method. Is this…
  • MFA Radius for Admin on Switches etc

    Hi All, Hoping someone can help as I'm stuck trying to get MFA Radius auth to work for Admin access on switches etc. AAuth 6.4.1 I'm trying to use Radius with MFA for Admin access to switches etc. Can't get the rules/chains, just getting auth-reject…
  • Installing Advanced Authentication via USB

    Hi Guys, Is it possible to install Advanced Authentication via USB? Like booting the iso image from the usb? TIA
  • Create TOTP Enrollment by API

    Hello I'm trying to create a TOTP enrollment by API for users. The Idea is to use a service to consume the API and create the QRCode image to my users scans it. I want to do it, because the company wants to create a personal frontend, and the advanced…
  • Unable to add Yubikey HOTP keys in Advanced Authentication

    Hi, I am trying to use OATH-HOTP on Yubikeys to authenticate via Advanced Authentication. I have used the Yubikey personalisation tool to generate the secret, uploaded the CSV file to AAF succesfully. When trying to add the HOTP token through AAFServer…
  • "Resource is not available" message after MFA authorization policy.

    Hi, I have recently attempted to set up an Authorization Policy for a proxy service in Access Manager to force users to reauthenticate with netIQ MFA if they are connecting to the proxy service from an IP address external to the organisation. I have…
  • ADVANCED AUTHENTICATION APPLIANCE .ISO

    Hello I am now learning about Advanced Authentication and I am following the videos on the Cyberres learning path. In one of them the teacher explains how to set up a virtual machine with the Advanced Authentication Appliance and he is using and .iso…
  • FIDO2 PIN

    We are doing our first steps with AA 6.4 - currently we are testing GroupWise and Filr with AA. The setup seems to work fine, authentication to GroupWise Client, GroupWise Web and Filr Web works with FIDO2, TOTP and Smartphone methods as second factor…
  • Password Chnage in AD not being reflected in Advanced Auth Saas

    We are experencing a strange issue... When a user sets up the native e-mail app or outlook via office365 they are prompted for their email address, user enters their address and they are redicreted to the AA logon page where they enter theis AD user…