Improve security protocol beyond Basic Authentication | Community
Skip to main content
J
jvc1
March 9, 2021
Delivered

Improve security protocol beyond Basic Authentication

  • March 9, 2021
  • 4 replies
  • 1073 views
Request for Feature Enhancement (RFE) Summary: AEM really only supports Basic Authentication, and many commands in the cURL API also use Basic Authentication. The superuser 'admin' account also uses Basic Authentication. It seems overdue that AEM support more secure protocols, even if it's just two-factor.
Use-case: cURL API and superuser functions primarily
Current/Experienced Behavior: Basic Authentication rules the day
Improved/Expected Behavior: Use at least two-factor, but preferably key/certificate base authentication.
Environment Details (AEM version/service pack, any other specifics if applicable): 6.5 SP2
Customer-name/Organization name: USAA
Screenshot (if applicable):  
Code package (if applicable):  

    4 replies

    joerghoh
    Adobe Employee
    joerghohAdobe Employee
    Adobe Employee
    March 11, 2021

    AEM is not an Identity Management system, but you can configure it to rely on such a system, e.g. using SAML. There are dedicated systems, which can do that much better than AEM.

    H
    Adobe Employee
    Hamid1350Adobe Employee
    Adobe Employee
    March 28, 2021

    Hi @jvc1 

    You can also create an Adobe Experience Manager OSGi bundle that uses Sling authentication APIs to create a bundle that supports two factor authentication.

     

    https://helpx.adobe.com/experience-manager/using/twofactor64.html

     

    H
    Adobe Employee
    Hamid1350Adobe Employee
    Adobe Employee
    March 31, 2021

    Hi @jvctnt 

    The similar feature has been provided in AEM cloud services and now supports token based authentication:
    https://experienceleague.adobe.com/docs/experience-manager-learn/getting-started-with-aem-headless/authentication/overview.html

    Terms & ConditionsAccessibility statement

    Loading footer...