We've been using RSA Secure ID tokens to access VM for several years.
Now the hard part, other than knowing we come in through VPN, I don't have a clue how that part of the network is designed.
If you want more info, I do know the right people to ask.
Caution... before implementing, very carefully think through how to handle users having lost or forgotten their tokens.
Our scenario is to call our Support Center, where after supplying minimal validation info, a single-use token is left in their Voice Mailbox (to which they dial, and have to enter the Voice Mailbox password). If requested, now that they can logon once, a list of 10 additional single-use passwords is sent to their e-mail. Note that NO ONE is given a password orally over the phone - they have to know the number to access Voice Mail, their extension, and their Voice Mailbox password.
Mike Walter
Hewitt Associates
The opinions expressed herein are mine alone, not my employer's.
| "Thomas Kern"
<[EMAIL PROTECTED]>
Sent by: "VM/ESA and z/VM Discussions" <[email protected]> 11/23/2005 02:36 PM
|
|
Management is looking at having ALL system administrators use 2 part
authentication. One product that is prominent in their discussions is
RSA's SecurID. Their website lists components for Windows, Solaris, AIX
and Intel-based Linux. My boss is going to ask them if they support
systems on IBM zSeries platforms.
Has anyone else had experience with this product even without their
mainframe systems being part of the setup?
The information contained in this e-mail and any accompanying documents may contain information that is confidential or otherwise protected from disclosure. If you are not the intended recipient of this message, or if this message has been addressed to you in error, please immediately alert the sender by reply e-mail and then delete this message, including any attachments. Any dissemination, distribution or other use of the contents of this message by anyone other than the intended recipient is strictly prohibited.
