RSA SecurID appliance network placement
Posted on 2010-08-28
A customer has purchased dual RSA SecurID Appliance 130's, which will be used to authenticate remote users via hard and soft tokens. I'm looking for design recommendations on where the RSA appliances should be positioned - specifically, should they be in the network DMZ w/ public IP addresses, hidden behind a static NAT firewall, or something else altogether?
Pretty basic/simple question (I trust), and supporting documentation is always helpful.