Expand my Community achievements bar.

Improve security protocol beyond Basic Authentication

Avatar

Level 1

3/9/21

Request for Feature Enhancement (RFE) Summary: AEM really only supports Basic Authentication, and many commands in the cURL API also use Basic Authentication. The superuser 'admin' account also uses Basic Authentication. It seems overdue that AEM support more secure protocols, even if it's just two-factor.
Use-case: cURL API and superuser functions primarily
Current/Experienced Behavior: Basic Authentication rules the day
Improved/Expected Behavior: Use at least two-factor, but preferably key/certificate base authentication.
Environment Details (AEM version/service pack, any other specifics if applicable): 6.5 SP2
Customer-name/Organization name: USAA
Screenshot (if applicable):  
Code package (if applicable):  
4 Comments

Avatar

Employee Advisor

3/11/21

AEM is not an Identity Management system, but you can configure it to rely on such a system, e.g. using SAML. There are dedicated systems, which can do that much better than AEM.

Avatar

Employee

3/28/21

Hi @jvctnt 

You can also create an Adobe Experience Manager OSGi bundle that uses Sling authentication APIs to create a bundle that supports two factor authentication.

 

https://helpx.adobe.com/experience-manager/using/twofactor64.html

 

Status changed to: Needs Info