• RADIUS - Packet does not contain required Message-Authenticator attribute

    Hi everyone, We are configuring a CyberArk as a RADIUS Client for authentication against Advanced Authentication RADIUS server. After some initial tests, we are getting this error message: “Error: Receive - Insecure packet from host 10.99.132.66: Packet…
  • Advanced Authentication 6.4.3.1 JSON SMS sending

    Hi! We wanted to setup new JSON sending of SMS in AA, but have found an issue that is stopping us from implementing. The phone number placeholder is not replaced with actual phone number and is sending an empty string to server. Our JSON parameter…
  • Unable to translate radius SMS prompt

    Hello, We are trying to translate the SMS OTP prompt shown on RADIUS events, but after several attempts to translate it using custom messages we are unable to do so. We are using the Custom Messages module to add Spanish translation for this prompt. We…
  • SMS Integration - application/json body

    Hi, I'm performing an Advanced Authentication integration between SMS OTP and a REST webservice. The webservice has the requirement of receiving all parameters in the body as an application/json, but as far as I know, Advanced Authentication only send…
  • F5 Radius integration - Chain selection

    Hello, I'm involved in a Radius integration with an F5 VPN, and I'm wondering if interactive chain selection by the user is supported during connection. I saw this message on documentation, but is not exactly what our customer wanted: https://www.netiq…
  • ADVANCED AUTHENTICATION APPLIANCE .ISO

    Hello I am now learning about Advanced Authentication and I am following the videos on the Cyberres learning path. In one of them the teacher explains how to set up a virtual machine with the Advanced Authentication Appliance and he is using and .iso…
  • Risk engine

    Hi I’m trying to utilize the risk engine and have run into trouble. I need to configure NAT and assume that it should be done the same way as in the Access Manager where we use the X-Forwarded-For header and parse it using this regex [^, ]* to remove…
  • The user can't save Windows Hello

    Hi I want to save Windows Hello method for user,but have some issuses, On the enroll web page click add windows Hello and save, the web report error info is " Windows Hello service is not available" I can't see some logs for this issues, Please…
  • Signing in with wrong user asks for chain selection instead of detecting wrong username

    Hello, When I login with a wrong username into Authenticators Management event, Advanced Authentication shows me the chain selection dialog instead of showing some kind of message like " User not found, please use a valid username". Password was not introduced…
  • NAAF logout redirection

    Hi everyone, We have Advanced Authentication SSO integrated with Access Manager, but when we logout from authenticators management page it redirects to NAAF login page. Do you know if there is possible to redirect to Access Manager logout page? Regards…
  • Authenticators Management portal customization

    Hi everyone, We need to customize this texts in the authenticators management page: Do you know if is actually possible and how we should do it? Thanks in advance, Rodrigo
  • Is it possible to use mini USB Fingerprint device for AAF windows login Fingerprint method?

    Hi, We have a requirement from customer, to use Mini USB Fingerprint device for AAF windows login Fingerprint method. As per AAF documentation only USB based Fingerprint devices are supported by AAF. Can anyone suggest best compatible supported…
  • NAAF RADIUS Server compatible with Fortinet-Group-Name feature

    Hi all, I'm configuring the multifactor authentication between Advanced Authentication and Fortinet Appliance. All tested methods worked fine, but we want to enable the Fortinet-Group-Name feature described here: https://kb.fortinet.com/kb/documentLink…