I understand that I can use the UAC to force users to authenticate if they hit certain firewall policies on my SSG140. I want to know what the user experience is when there are multiple policies that require authentication. For example if I have these firewall policies:
Untrust to Trust from Any to 18.104.22.168 protocol SSH
Trust to Production from 22.214.171.124 to 126.96.36.199 protocol telnet
Authentication is enabled on both policies via an IC controller. What happens if a user connects to 188.8.131.52 hitting policy 1 and authenticates to the IC controller using a 2 factor token, then the same user makes the connection to 184.108.40.206 traversing policy 2? Is it possible to have the user only authenticate once and then the IC and SSG140 recognise that user for future policies that require authentication, within a certain time period?