13 Jun
2016
13 Jun
'16
6:46 a.m.
On 12/06/2016 19:30, Cornelius Kölbel wrote:
We've looked at this in detail, and there are about 250 people in our organisation of 30k+ that could justify a hard token.
So you should choose a solution, where you can combine soft tokens, text messages, OTPs via email *argh* and hardware tokens, just as you wish. This would make the best sense for your scenario.
Ideally yes. So I'm very supportive of the idea of a standard set of protocols that can integrate all of the above. In reality, cost and vendor support for our most exposed apps (Office 365, web-based SAML/Shibboleth auth) will matter hugely.