IBM PowerSC Multi-Factor Authentication User's Guide

This topic contains information about using IBM® PowerSC™ Multi-Factor Authentication.

Introduction to IBM PowerSC Multi-Factor Authentication

IBM PowerSC Multi-Factor Authentication, which is referred to in this document as IBM PowerSC MFA, provides alternative authentication mechanisms for AIX® operating systems that are used with RSA SecurID-based authentication systems, and certificate authentication options such as Common Access Card (CAC) and Personal Identification Verification (PIV) cards.

Out-of-band authentication type

Your administrator must configure your account for the out-of-band authentication type and must notify you whether to use the out-of-band web page to get a cache token credential.

SecurID authentication method

The method of logging in by using IBM PowerSC MFA with SecurID authentication depends on your RSA token type. The token type can be a fob-style hardware token, a hardware token with a PINpad, or a software token. If you are not sure about the RSA token type you are using, ask your system administrator.

PIV/CAC authentication method

You can use the PIV/CAC authentication method in-band to log in to the AIX operating system that has a smart card reader directly attached to the USB port, or to an application on that system.