RE: SSO & 2FA deployments

["Gary Everekyan" <karo () onnik com>]

 Without any further information regarding your environment I would
recommend looking at maybe TAM/TIM. Although, since CA got Netegrity I
would go with Netegrity any day.
Also regarding two factor AuthA/AuthZ you may be better off with PKI as
apposed to hardware tokens. Although if the application is internal I
would go for hardware tokens such as RSA.(Very Costly) 
Hope it helps... My .2 cents


Regards,
 
Gary Everekyan CISSP, CISM, ISSAP, MCSE, MCT
Information Security and Audit

 

-----Original Message-----
From: Daniel [mailto:deeper () gmail com] 
Sent: Friday, December 03, 2004 10:48 AM
To: webappsec () securityfocus com
Subject: SSO & 2FA deployments

hi all,

Can anyone here give some insight into Simple Sign On and Two Factor
Auth deployment experiences with web applications.
We were chatting to CA yesterday about their SSO/WAC solution and it
seems like a brilliant product, but obviously i'd like to hear real
world experiences.

How have people deployed this technology into their web app farms?

Daniel