I understand that I can use the UAC to force users to authenticate if they hit certain firewall policies on my SSG140. I want to know what the user experience is when there are multiple policies that require authentication. For example if I have these firewall policies:
Untrust to Trust from Any to 184.108.40.206 protocol SSH
Trust to Production from 220.127.116.11 to 18.104.22.168 protocol telnet
Authentication is enabled on both policies via an IC controller. What happens if a user connects to 22.214.171.124 hitting policy 1 and authenticates to the IC controller using a 2 factor token, then the same user makes the connection to 126.96.36.199 traversing policy 2? Is it possible to have the user only authenticate once and then the IC and SSG140 recognise that user for future policies that require authentication, within a certain time period?