We're using RSA and have for a while. We just changed our systems to use F5 Passage boxes along with the RSA tokens to establish full VPN tunnels from our own laptop systems. If you're working off a non corporate system, you can still connect using VPN, but you won't get a full network tunnel, only OWA, Intranet, and Citrix access.
We actually used to use Citrix and allow external (non company and company) people to connect to the Citrix infrastructure without tokens (id and password domain auth), but now all access including OWA, Citrix, and anything else has to come through the F5 boxes first. They still use the domain Id/pw for non full tunnel access, but gotta have the RSA and a company computer for full tunnel. Don K ________________________________ From: Robert Cato <[email protected]> To: NT System Admin Issues <[email protected]> Sent: Tuesday, May 26, 2009 8:07:53 AM Subject: Two Factor Authentication Good morning, Anybody using two-factor authentication that would care to share opinions and an overview of how you are using? We are looking to protect E2K7 OWA, MOSS07, and Terminal Services. Here are a couple I have found that look promising. http://www.multifa.com/ http://enterprise.comodo.com/security-solutions/authentication-identity-assurance/two-factor/ http://www.entrust.com/two-factor-authentication/ http://www.rsa.com/node.aspx?id=1156 Thanks, Robert ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
