Hi, Im looking to implement a PSA3000 but not sure on the best approach for the authentication server. I ould like to use AD and have a second google authenticator to login to the portal. This is nice as users just have one username and password to remember. My issue is if users forget their domain password or the password expires. We have an on prem password system for users changing password but of course they have to be on the network for them to access that. If they can not connect onto the pulse secure then they can not reset the password. We could use a local server for auth but that would require every user to have 2 passwords. Is there a better sollution?
... View more