Sending account passwords and emails in general vi... - Saviynt Forums - 1855

Originally posted on March 9 2020 at 09:51 UTC

Many clients have requested that SSM would deliver account passwords via external content gateway, such as SMS gateway or Sendgrid using Web API with modern authentication. Currently account passwords can only be delivered via SMTP with basic auth, and it raises security issues in client side.

Furthermore it would also be good if SSM supports SMTP with modern auth and maybe Web API with modern auth for sending any emails.

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

8 REPLIES 8

Originally posted on March 12 2020 at 10:16 UTC

Hi Juha - thanks for the feedback, supporting SMS based integration via REST calls is already in works. Supporting modern auth is in the roadmap for next year.

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on October 8 2020 at 09:11 UTC

How come this has been requested 7 months ago - and by then it was already in the works - but still not available ... that sounds like a very slow development path.

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on October 30 2020 at 13:41 UTC

Hi Jens,

I agree, our digital security has given us a deadline of February 2021 to remove legacy SMTP auth. I am following up with our customer support team otherwise we are going to have a challenge in distributing encrypted emails.

Peter

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on November 20 2020 at 16:01 UTC

This is a concern for us also.

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on November 20 2020 at 16:18 UTC

The current option for SMTP authentication is very insecure, just using a user name and password these days for such a critical service is not good enough. We really need to have authentication via certificates and modern authentication available asap.
Hoping that Saviynt can provide a more clear timeline for this, being a security driven company.

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on September 6 2021 at 13:44 UTC

Hi,

any updates when this feature would be available?

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on September 6 2021 at 14:23 UTC

Modern auth for SMTP is available. You just need to check on the exact version. We have implemented it.

Peter

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.

Originally posted on March 11 2022 at 07:51 UTC

Any updates on sending the password via SMS REST API?

This message was previously posted on Saviynt's legacy forum by a community user and has been moved over to this forum for continued exposure.