I've been asked by management to look into this and see if it is possible.
I've never used Google Authenticator myself but was aware you could use it for secure access to google apps and some other third party sites.
I wasn't aware it could be used instead of VPN to access an enterprise network.
Management got this idea because they are using Google Authenticator for secure access to a third party site for a business service they use.
Their question is if we could use it to authenticate for remote access to our network. This would give them the same access they have now i.e to all PCs and servers in the network they need for their work.
I came across this article while looking into this: https://www.wikidsystems.com/blog/5-issues-enterprises-should-consider-before-using-google-authenticator-for-ssh/
#5 is listed as a serious concern. We have many, many servers so I imagine this would be a concern for us as well if true.
Our VPN access is currently managed by a Cisco ASA 5510.
Is this feasible to implement this on an Enterprise network? Where can I find documentation on getting this configured?