Can the SA4000 promt the user to enter some data after they put in a user/password? We want to ask the user to enter some characters on a printed grid, and if they put in the right sequence to allow them to get on the VPN.
is that part of a security solution of some sort ? If it is then they should have some kind of radius server of their own and you would add a secondary authentication mechanism to the realm. It would prompt them for both at login, just like when you set it up for a RSA Token.
this is a two factor authentication scheme and i dont think juniper supports this auth server yet what you can do is setup your printed grid server to accept a radius call and wehn the user types in the information it is packaged as a radius call from junipers percpective and then sent to the Grid server and after grid server verifies that the grid is good it sends an allow back to juniper.