Request for Feature Enhancement (RFE) Summary: AEM really only supports
Basic Authentication, and many commands in the cURL API also use Basic
Authentication. The superuser 'admin' account also uses Basic
Authentication. It seems overdue that AEM support more secure protocols,
even if it's just two-factor. Use-case: cURL API and superuser functions
primarily Current/Experienced Behavior: Basic Authentication rules the
day Improved/Expected Behavior: Use at least two-factor, but preferably
Request for Feature Enhancement (RFE) Summary: The AEM superuser 'admin'
account can perform certain functions within AEM. It cannot be delegated
to a group such as 'Administrators'. As you mentioned, perhaps this
would be addressed by the internal enhancement to extend this access to
the groups configured in Apache Sling Web Console Security Provider.
Use-case: e.g. keystore/truststore functions Current/Experienced
Behavior: only the 'admin' user provides some functions in AEM.