Verricom's avatar
Verricom
Active Contributor
3 years ago
Status:
Declined

Login policy - could more than one default overall policy be possible

Aside from the default current login policy, could additional ones also be created?

 

It seems a bit Draconian and old fashioned to have a single policy enforced on all users when some would benefit from having easier access.

 

Clearly it makes sense that MFA users need to enter login details every time and not store things for security.

However, for non-MFA users such as trusted accounts these could then be allowed to save details to get quicker and easier connection without any additional steps to systems that are not critical or that do not have sensitive info.

 

  • ProCentPM's avatar
    ProCentPM
    GoTo Contributor
    Status changed:
    New
    to
    Declined

    Hey,

     

    Thank you for the great suggestion, however due to our current roadmap commitments we cannot undertake this change right now. The current credential handling is defined by the MAH. If entering credentials all the time is a bigger problem compared to the risk involved in not using this security measure then this feature can be disabled at any time.