troubleshooting Question

.NET IIS Server - two factor access options

Avatar of amigan_99
amigan_99Flag for United States of America asked on
.NET ProgrammingMicrosoft IIS Web ServerSecurity
1 Comment1 Solution12 ViewsLast Modified:
Spacely Sprockets has a .NET server running IIS. It has a main page and four URLs and it hooks into MS SQL on the back end. Main Page, Retail Sprockets, Wholesale Sprockets, Government Sprockets, Spacely Partners. Each of the sub web sites has its own user ID and password required. Mr. Spacely would like there to be two factor authentication to be able to access any other these. He's thinking perhaps just to get to the web site a user would need a user ID and password and a two factor. And then this would be kind of a two factor authentication as after you've 2FA'd to the main site you're then permitted to use UID/PW to reach any of the sub web sites. This seems out of the spirit of true 2FA which would send you a token when you accessed any of the sub web sites. But then it's not my expertise either. Is the old man's request reasonable? If yes would it be best resolved at the server? PAN firewall? Citrix Load Balancer? It seems to me like we're really talking about publishing five applications. Help! Jane stock this crazy thing!
ASKER CERTIFIED SOLUTION
Join our community to see this answer!
Unlock 1 Answer and 1 Comment.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 1 Comment.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros