@filbert: What I want is AD as an authentication server (first spot in the realm's auth server selection), and RSA as a secondary (authorization - second spot). I seem to be unable to do this, probably because AD is configured in native mode, not LDAP, like you said. What I don't understand here is why native does not work while LDAP does. And no, I am not selecting the "additional authentication server" option. @NateK: Your solutions looks interesting, however, the "additional authentication server" option that you used is usually not for token stuff, it's ment to be for SSO. So I am not sure I want to use this. Does anyone have any thoughts on this? I will probably just end up defining AD through LDAP and be done with it, but I still would like to understand. Thanks
... View more