Hi, I understand that I can use the UAC to force users to authenticate if they hit certain firewall policies on my SSG140. I want to know what the user experience is when there are multiple policies that require authentication. For example if I have these firewall policies: Policy 1 Untrust to Trust from Any to 22.214.171.124 protocol SSH Policy 2 Trust to Production from 126.96.36.199 to 188.8.131.52 protocol telnet Authentication is enabled on both policies via an IC controller. What happens if a user connects to 184.108.40.206 hitting policy 1 and authenticates to the IC controller using a 2 factor token, then the same user makes the connection to 220.127.116.11 traversing policy 2? Is it possible to have the user only authenticate once and then the IC and SSG140 recognise that user for future policies that require authentication, within a certain time period?
... View more