Also www.securecomputing.com has the tokens which imho are better than rsa's.
-----Original Message----- From: C-Foo [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 6:32 PM To: David Brown Cc: 'Security Basics' (E-mail) Subject: Re: Webmail authentication I would look into one time use passwords like the RSA token's on some people's keychains. http://www.rsasecurity.com/products/securid/hardware_token.html Look to the bottom of the site page. I believe it can integrate into a domain. C David Brown wrote: >My company is working on a webmail implementation, which requires that the user authenticate to an NT domain. Regardless of the authentication method, there is always an option in the login dialog to 'Save this password in your password list', which seems to be browser driven. I don't want my user population saving their passwords to various computers all over the world. Does anyone have a clue how to remove or disable this option? > >David M. Brown >Director, IT Services >S Y N E R G E X ><www.synergex.com> >Office: 916 853-0396 >Mobile: 916 718-6695 >FAX: 916 635-6549 > > > >