Freeradius and 2 Factor Authentication

Phil Mayers p.mayers at imperial.ac.uk
Mon Jun 13 12:46:15 CEST 2016


On 12/06/2016 19:30, Cornelius K├Âlbel wrote:

>> We've looked at this in detail, and there are about 250 people in our
>> organisation of 30k+ that could justify a hard token.
>
> So you should choose a solution, where you can combine soft tokens, text
> messages, OTPs via email *argh* and hardware tokens, just as you wish.
> This would make the best sense for your scenario.

Ideally yes. So I'm very supportive of the idea of a standard set of 
protocols that can integrate all of the above.

In reality, cost and vendor support for our most exposed apps (Office 
365, web-based SAML/Shibboleth auth) will matter hugely.


More information about the Freeradius-Users mailing list