Comment

Improve security protocol beyond Basic Authentication

Avatar

Level 1

09-03-2021

Request for Feature Enhancement (RFE) Summary: AEM really only supports Basic Authentication, and many commands in the cURL API also use Basic Authentication. The superuser 'admin' account also uses Basic Authentication. It seems overdue that AEM support more secure protocols, even if it's just two-factor.
Use-case: cURL API and superuser functions primarily
Current/Experienced Behavior: Basic Authentication rules the day
Improved/Expected Behavior: Use at least two-factor, but preferably key/certificate base authentication.
Environment Details (AEM version/service pack, any other specifics if applicable): 6.5 SP2
Customer-name/Organization name: USAA
Screenshot (if applicable):  
Code package (if applicable):