Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Prevent simultaneous User Logins to Blue Prism (native auth)

james.man
Staff
Staff
‎03-02-20 09:08 AM
Status: Not Planned

I've seen this come up once in a security pentest, where one user name and password combination was allowed to login to multiple Interactive Clients, and this was flagged as a security risk.

I've also seen this in a customer's requirements checklist, that a username/password combination cannot be used simultaneously.

Consider adding a checkbox or something similar that will prevent users using Native Auth from authenticating more than once into the BP environment if checked

3 Comments
vivek.kumar.goel
Level 10
‎04-02-20 08:20 AM
‎04-02-20 08:20 AM
This can be even reproduced by having a standalone installation. You can open as many instances of BP application as you want and login using the same credentials. I think, concurrent login should be only allowed/set to 1.

37213.png
0 Likes
robert.nicklin
Staff
Staff
‎09-03-23 01:50 PM
‎09-03-23 01:50 PM

Hi @james.man

Thanks for taking the time to raise your idea.

Given the low number of votes from the community, I'm going to opt to move this idea into a status of Not Planned - though if anything changes in terms of number of votes or support for this idea I'll be happy to reconsider/reopen for review.

Regards,

Rob

0 Likes
DarylY
Level 2
‎18-05-23 01:47 AM
‎18-05-23 01:47 AM

This is an increasingly required feature for enterprises from perspective of security.

0 Likes
li.common.scroll-to.top