For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Dave_Moore_1640's avatar
Dave_Moore_1640
Icon for Nimbostratus rankNimbostratus
Jul 17, 2014

Two-Factor Authentication Options

Hi,

 

We are currently utlising a BIG-IP APM and are looking to use this in conjunction with our new XenApp 6.5 farm. My question is, what are the options for two-factor authentication? The Citrix/BIG-IP doc only states RSA; would it be possible to use cloud based?

 

BIG-IP Access Policy Manager (APM)
deployment
security

2 Replies

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    Jul 17, 2014

    There's no real limitation in the type of two-factor authentication you choose. What matters is what you provide on the client side. If you require username and password on the client side, then APM can challenge for (and validate) any conceivable second-factor (RSA token, PKI certificate/smartcard, SMS/email OTP, etc.), none of which relies on the internal capabilities (or rather in-capabilities) of the XenApp environment.

     

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    Jul 17, 2014

    You're referring to cloud-based 2 factor things like PhoneFactor? SMS/OTP providers? Because there are so many, I don't believe there's any official documentation on a given product. There's some really interesting DevCentral codeshare content on a few of them though, like Google Authenticator and a few others. Look through the codeshare and you should see them.