Quote:
Originally Posted by
DGPickett
If you have the money for the tokens (I have carried many), the vendors help you get set up. I am not an SA focused guy.
I'm familiar with using tokens to authenticate a VPN network connection, but I have not seen them in use for authenticating users to an individual server, especially an HP-UX server running in Trusted Mode. I could call around to the vendors and see what they can offer, but was more curious if anyone here had already implemented such a thing, and what products they used, and what their opinions were on the solution.
Quote:
Originally Posted by
DGPickett
Once, I proposed writing a free lightweight one where on top of the password, there was a challenge-response from a small database or flat file. You take a printout home and answer from that. Challenges get a one time use, so you need to generate a new set and print it out now and then. I guess you could put it in a file and automate it. What you have and what you know = 2 things. You might be able to set it up as a shell wrapper in passwd that demands the response before starting your shell.
That's a clever idea, and may even meet our requirement. Running in Trusted Mode however I think would rule that out. Trusted Mode is very different animal when it comes to user authentication.