HPE Community
Operating System - HP-UX
1833589 Members
4233 Online
110061 Solutions
New Discussion

Losing sleep over RSA SecureID with AD

 
Olivier Masse
Honored Contributor

‎09-30-2009 04:51 PM

‎09-30-2009 04:51 PM

Losing sleep over RSA SecureID with AD

I'm trying to see how I could move from a standard, honest-to-goodness, local password authentication to a full-blown authentication using AD as the repository for user accounts, and the RSA SecureID token (or any other two-factor token actually) to handle OTP.

PAM_RADIUS... AAA Server... LDAP-UX... Kerberos... OATH... I'm getting mad trying to understand at a high level how all these components work, let alone integrate together. I don't want to have to leave everything in the hands of a vendor.

Integrating with the AD itself is well documented in a whitepaper on docs.hp.com but no mention about OTP except in PAM_RADIUS or the AAA Servers docs.

Anybody could point me to some good documents on this? N.B. ZERO points to anyone who links to the administration guides of these products above on docs.hp.com. Or maybe ONE if I feel in a good mood. :) Unless, of course, it's to point out something interesting such as a flow diagram I could have missed.

For the record, someone asked the exact same question a while ago but didn't get any answers:
http://forums13.itrc.hp.com/service/forums/ques
tionanswer.do?admit=109447627+1254357749725+28353475&threadId=1241706

Thanks!
0 Kudos
Reply
1 REPLY 1
Dennis Handly
Acclaimed Contributor

‎10-04-2009 04:54 AM

‎10-04-2009 04:54 AM

Re: Losing sleep over RSA SecureID with AD

Your URL fixed:
http://forums.itrc.hp.com/service/forums/questionanswer.do?threadId=1241706
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.