RSA intergration with SiteMinder for 2 fact authentication

Document ID : KB000013219
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

How can we achieve 2 factor authentication  with SecureID and SSO userID and Password 

Environment:
SSO policy server r12.52 Sp1 CrX and aboveRSA Authentication Server 8.1
Answer:

The authentication scheme for SecureID is considered 2 factor authentication if you are looking to also include ID/PW + secureID this can be consider 3 factor 

RSA SecurID, formerly referred to as SecurID, is a mechanism developed by Security Dynamics  for performing two-factor authentication for a user to a network resource.

The RSA SecurID authentication mechanism consists of a "token" — either hardware (e.g. a key fob) or software (a soft token) — which is assigned to a computer user and which generates an authentication code at fixed intervals

For a possibility of 3 factor authentication that includes ID/PW + secureID CA has a Global Delivery module that you might want to review “XauthRadius”  

 

If you configure SecureID for RADIUS then they could leverage CA Global Delivery XauthRADIUS module.

Directory Password plus RADIUS password. As of version 2.3 XauthRADIUS supports username, RADIUS password and directory password – all on a single form.