APM Two-Factor Authentication with AD and HTTP AAA
I'm creating an access policy with two factor authentication. Our users have ther AD credentials and a grid card. First of all they should provide their AD credentials.
If the authentication succeeds, they shoulf pass the grid card authentication: User Number (It's not ther AD user name but we check if both of them belong to the same person) Grid Value 1: A1, C6, J5... Randomly generated by the grid card authentication system. Grid Value 2: A1, C6, J5... Randomly generated by the grid card authentication system.
The second authentication is made calling an external web. The username and password of the first step must be sent as parameters with POST or GET. I think that it's not possible to do this with external logon page. What about http authentication? I find some problems: - The second authentication is not based on user/password but user /two passwords with variable caption. - The need of sending the first credentials.