We're looking for a solution that will allow us to do the following:
- User has a biometric software (or reader) running on his PC (or USB) that reads his fingerprint
- User fingerprint is read from the device and then token is created (that doesn't envolve actual scanned fingeprint)
- User strats VPN client that uses fingerprint token as a two-way authentication with Watchguard firewall
- Watchguard firewall accepts it and passes it to the Biometrics server <for a lack of a better term> which reply to Watchguard with "accept the connection" if validation was ok
Or any similar solution that allows biometric authentication for VPN sessions with Watchguard
Any pointers would be much appreciated.