Hello, I was wondering if it is possible to require only a single factor that is not the normal kerberos auth. For a while now I have been requiring both kerberos and then a second factor using a OTP for users. However now we are looking at removing the kerberos requirement and only using the OTP for some protected services. I've made a few attempts at this, but have so far been unsuccessful. Reauth requires a service or cgi, and it seems using a service forces you to use passwd (kerberos). Does anyone have advice for pulling this off?
Thanks, --Chad ------------------------------------------------------------------------------ Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk _______________________________________________ Cosign-discuss mailing list Cosign-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/cosign-discuss