Access-Challenge authentication via both LDAP and SecurID

Alan DeKok aland at
Thu Jan 29 08:26:52 CET 2009

Amy Hawke wrote:
> We would like to get two factor authentication working using the 
> username/password from our current LDAP directories and then 
> username/RSA token code.

  That will likely *not* work.  The NAS has to support this behavior,
and usually doesn't.

>  The RSA product is unable to connect to our
> current directories, so if possible we would like to perform the first
> step using FreeRADIUS and then proxy the second part of the request
> through to the RSA Authentication manager.

  We're currently working to get FreeRADIUS integrated with the RSA
token libraries.  There are licensing restrictions, so the resulting
code will likely not be part of the "official" release.  But it should
be available.

  Alan DeKok.

More information about the Freeradius-Users mailing list