Alias account security

MailTec1 · September 3, 2025, 2:38pm

Is it possible to disable the ability for a person to login with the alias account. We have had a problem where a user account information was leaked in a data breach from another company and we get attempts for login with the breach info. What we have done is created a new user and migrated the user account over with new password and MFA. However we notice you can still login using old account username “alias” (With new password and MFA of course) I just want my users to only be able to login using the primary account username.

Thanks in advance for any help or suggestions.
MT1

indreias · September 3, 2025, 3:19pm

Hello,

Yes, you could disable the default behavior (login via aliases).

Login into the Axigen CLI with admin user and execute the following commands:

<#> config server
+OK: command successful

<server#> set allowAliasLogins no
+OK: command successful

<server#> commit
committing changes and switching back to previous context.
+OK: command successful

<#> save config
+OK: command successful

<#> quit

HTH,
Ioan