Dear all,
We are working on a security project and One of the items the customer wants us to implement is the restriction of certain SAP users logon
from specific PC's within the customer premises.
After looking around, the best solution seems to be the implementation of two-factor authentication for these users, using digital certificates for
the PC's. These certificates can be issued by customer for the 5-10 PC's, that will be allowed to connect, and during the logon sequence for these
users the second factor to be checked will be the existence of the PC certificate.The certification authority can be Active Directory.
The two factor auth can be implemented with the SSO 2.0 but is it any other way to fullfil this request?
If we implement the SSO it will be possible to doi't only for "5-10 PC's" and not for all users?
Thank you,
Dimitris