two-factor authentication for both local and remote login

TheMSsForum.com: The Microsoft Software Forum

Can anyone here suggest a solution for two-factor authentication (e.g.,
password and USB key) that would work both for normal Windows login
(i.e., user is sitting at PC) *and* for remote login via Remote Desktop
(or some equivalent remote access solution)? The solution must support
the *same* two-factor method for *both* kinds of access.

Cheers,
James
Top

Re: two-factor authentication for both local and remote login by Paul

Paul
Fri Jul 07 05:23:55 CDT 2006

In article <e8lc1t$6f9$1@scotsman.ed.ac.uk>, in the
microsoft.public.security news group, James Anderson <jad@ccir.ed.ac.uk>
says...

> Can anyone here suggest a solution for two-factor authentication (e.g.,
> password and USB key) that would work both for normal Windows login
> (i.e., user is sitting at PC) *and* for remote login via Remote Desktop
> (or some equivalent remote access solution)? The solution must support
> the *same* two-factor method for *both* kinds of access.
>

As long as the remote system is XP or Windows Server 2003 then any smart
card (note that this includes USB token form factor devices using a Smart
Card Logon certificate) will just work as both XP and Windows Server 2003
support smart card pass through. Windows 2000 does not.

--
Paul Adare - MVP Virtual Machines
It all began with Adam. He was the first man to tell a joke--or a lie. How
lucky Adam was. He knew when he said a good thing, nobody had said it
before. Adam was not alone in the Garden of Eden, however, and does not
deserve all the credit; much is due to Eve, the first woman, and Satan, the
first consultant." - Mark Twain
Top

Re: two-factor authentication for both local and remote login by James

James
Wed Jul 12 07:33:40 CDT 2006

Paul Adare wrote:

> As long as the remote system is XP or Windows Server 2003 then any smart
> card (note that this includes USB token form factor devices using a Smart
> Card Logon certificate) will just work as both XP and Windows Server 2003
> support smart card pass through. Windows 2000 does not.

Many thanks for the reply, Paul.

What would be some of the leading third-party solutions for two-factor
authentication using a USB token device? (Sorry I'm such a neophyte in
this area!)

James
Top

Re: two-factor authentication for both local and remote login by Paul

Paul
Wed Jul 12 17:11:11 CDT 2006

In article <e92q74$j4u$1@scotsman.ed.ac.uk>, in the microsoft.public.security
news group, James Anderson <jad@ccir.ed.ac.uk> says...

> Paul Adare wrote:
>
> > As long as the remote system is XP or Windows Server 2003 then any smart
> > card (note that this includes USB token form factor devices using a Smart
> > Card Logon certificate) will just work as both XP and Windows Server 2003
> > support smart card pass through. Windows 2000 does not.
>
> Many thanks for the reply, Paul.
>
> What would be some of the leading third-party solutions for two-factor
> authentication using a USB token device? (Sorry I'm such a neophyte in
> this area!)
>

Verisign, RSA, and Aladdin are probably the most common when talking about
USB form factor devices.

--
Paul Adare - MVP Virtual Machines
It all began with Adam. He was the first man to tell a joke--or a lie. How
lucky Adam was. He knew when he said a good thing, nobody had said it before.
Adam was not alone in the Garden of Eden, however, and does not deserve all
the credit; much is due to Eve, the first woman, and Satan, the first
consultant." - Mark Twain
Top