at a former employer we had securid + tacacs + PAM for some interesting magic that would let people authenticate via securid to external bastions which would authenticate them into the external bastion and allow the next set of ssh for the next hour proceed with RSA key authentication without typing the password again.
There was also securid+tacacs for accessing the routers and a bunch of other useful things. With PAM you can get some convenience and flexibility in your integration. _______________________________________________ Tech mailing list [email protected] http://lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
