AFAIK NG AI doesn't support S/Key, we currently use S/Key to authenticate external users with one-time passwords. Which should be the new authentication scheme we should use?
We expect to retain all the features of S/Key, right now external users validate with the firewall via HTTP.
If you want to use "one time password", I would definitely go with RSA ACE Server. RSA Ace Server also comes with built-in RADIUS which is very easy to configure. With Ace Server, you have "two-factor" authentication which is much more secure than S/Key.
Thanks, but do I need to provide RSA SecurID to the clients that want to log using RSA AceServer?. I don't want to provide/require RSA SecurID to the external users that should connect to my company.
