Matt Mossholder on 7 Nov 2013 07:01:49 -0800
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
[PLUG] SecurID experience with mapping users based on source host
- From: Matt Mossholder <email@example.com>
- To: firstname.lastname@example.org
- Subject: [PLUG] SecurID experience with mapping users based on source host
- Date: Thu, 7 Nov 2013 10:01:20 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mossholder.com; s=google; h=mime-version:sender:from:date:message-id:subject:to:content-type; bh=6r5da92gR7RWaEMwIsiAaivflF7ALtKh65LUjc9YpkU=; b=tWxtoT39j5wqTCHRjJPtsIasAJqSHTl/2U1tugVFjlz5VYnEz4SjJlr8aUO/cZWvJ4 onD9SWZzV5RzYvKTxoOu6akXxKZupV4njaK1QLzRNGjHN6EFzg4kt5O3YqXpdslvQoU1 KhPPHwp5suN9rBW8v4/SfcZOiIW/QX7yz34Zg=
- Reply-to: Philadelphia Linux User's Group Discussion List <email@example.com>
- Sender: "plug" <firstname.lastname@example.org>
I'm working on something where I need to be able to do some dynamic mapping of user IDs in SecurID.
Here's the scenario:
* Users have two different accounts, one for day-to-day use, and another for administrative access.
* Depending on the system being used, the user may need to authenticate with either, but not both, of the two accounts.
* I would like the users to only carry a single token, rather than needing one for each of the two accounts.
Is this something that SecurID can do? It seems like you should be able to do it using the Login Alias setting, but it also seems like it is more focused on group authentication, rather than individual users.
Has anyone been down this path before?
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug