Token authentication module

Two-factor authentication requires users to provide two forms of identification.For example, a single factor of identification, such as a password, plus a second factor in the form of an authentication token.A simple two-factor method --- based on something the user knows plus something the user possesses -- provides a more reliable level of user authentication than reusable passwords.

Security Verify Access reverse proxies have a built-in client that is compatible with the RSA SecurID authentication server(RSA ACE/Server) and is written against the RSA Authentication API. WebSEAL provides RSA authentication client functions (RSA ACE/Agent), and is certified as RSA SecurID Ready.

By default, this built-in module for token authentication is hard-coded to map RSA SecurID token passcode data. This token authentication mechanism expects the user name used by the client to map to an existing user account in the ISAM LDAP registry.

Parent topic: Token authentication concepts