Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

RSA across domains

Posted on 2012-03-19
4
283 Views
Last Modified: 2012-07-15
Hi,

One of our customers are looking to implement RSA across their network.  They have two domains (one for their office and one for their datacentre).  Users that have a datacentre account will have it named the same as their office account.

Obviously we'd prefer it if users only have one fob so I'm wondering how (if possible) we can go about this.

Thanks in advance
0
Comment
Question by:wanstor
  • 2
  • 2
4 Comments
 
LVL 63

Expert Comment

by:btan
ID: 37740780
Was thinking of web access gateway which take in username@domain as username and perform backend ldap and rsa check. It offload the check through such central portal login page. If this something you are interested, I can share more..
0
 
LVL 1

Accepted Solution

by:
wanstor earned 0 total points
ID: 37741491
Yes please do.  We have a VPN between the two sites and if required we can set up a one way trust if that makes any difference.

Thanks
0
 
LVL 63

Expert Comment

by:btan
ID: 37742936
Know of F5 access policy mgr which can act as the middle man to performs client side prelogin check and rsathen doa whilesever checks. Ldap, ad and kerberos login and rsa secureid is supported. There is their webtop that can present the authorised resource base on the visual workflow policy builder created. Scripts for customization is available. Importantly all userchecks usingis transparent to it and act as a guardian.

 http://www.f5.com/products/big-ip/access-policy-manager.html
0
 
LVL 1

Author Closing Comment

by:wanstor
ID: 38187121
Setting up a one way trust between the two domains seemed to have resolved the issue. Thanks All!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
Each year, investment in cloud platforms grows more than 20% (https://www.immun.io/hubfs/Immunio_2016/Content/Marketing/Cloud-Security-Report-2016.pdf?submissionGuid=a8d80a00-6fee-4b85-81db-a4e28f681762) as an increasing number of companies begin to…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question