Product Ideas Portal

Got an idea for a new feature? Maybe a tweak to make something work even better? Wish there was an integration with another product to make you even more productive? You've come to the right place.

The Product Ideas Portal lets you submit whatever product feedback you have, good, bad, ugly, and anywhere between.

Want to stay anonymous? Don't worry, no email address or name fields are shared on the public portal. You can create an account which lets you vote on other people's ideas and receive updates when your idea's status changes.

To learn more about how an idea becomes a feature, check out this infographic.

22 Vote

Integration with YubiKey and SecureAuth

We would like to enable Multi factor Authentication (MFA) within the Beyond Trust Endpoint Privilege Management software. The idea is if you give certain elevated rights those users now have enabled MFA for other products than smartcard such as YubiKey and SecureAuth. It would be nice to also have the ability to say how long this authorization lasts, for example 24 hours before the user must re-authenticate.

  • Guest
  • Aug 18 2020
  • Future consideration
  • Aug 24, 2020

    Admin response

    Thank you for submitting this idea. We are currently evaluating the addition of support for OAuth MFA in our messages via Power Rules. I have referred this to our Engineers to assess whether Yubikey/SecureAuth can be considered as part of the same proposal.

  • Attach files
  • Guest commented
    9 Mar 06:03pm

    Hello -

    We have a use that came up during our deployment of EPM. Our scenario is:

    1.) Regular user accounts are assigned a hard-ware based token for authentication (in our case, this is a Yubikey in PIV mode).

    2.) The user connects via RDP to a remote host, where EPM is installed.

    3.) The user can authenticate via Yubikey to log into the remote host, via smartcard/USB passthrough from the local host.

    4.) The user attempts to run a process where EPM is configured to provide elevated credentials, and the user needs to provide authentication (for Example, the default Recommended - Restricted Functions application group).

    5.) EPM displays the configured message - but it does not recognize the Yubikey present in the local system. The prompt gives the standard 'Insert a smart card' message that defaults when a hardware token isn't detected/present.

    We would like the ability to utilize our Yubikeys within a RDP session when providing authentication to the EPM process.