* Greg Hudson (ghud...@mit.edu) wrote: > > Is there any way to eliminate the need for this first password? > > Not with the securid-sam2 preauth module. It implements the > send-encrypted-sad method of SAM2 preauth, which requires the user's > long-term key to be used to encrypt the OTP value.
Ok, thanks. Is the user's long-term key of any value if FAST is in
place? By that I mean- could I just make it 'password' or similar
without any security risk..?
Thanks!
Stephen
signature.asc
Description: Digital signature
________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos
