Customer has RSA Authentication Manager 8.X in PROD and there are target apps integrated with it for 2FA.
Currently PIN is in RSA Internal DB. We want to remove that and in its place want users to use their AD Password and then token code only.
We are looking for a best feasible solution to fulfill the customer requirement. Please advice
Usman,
Another option is to ask your RSA Account team about some of the new authentication options with RSA SecurID Access Enterprise or Premium editions. With the cloud service AD password can be the first factor followed by your RSA SecurID Tokens or push notification, SMS or one-time passcode for the second factor.
Test drive the new authentication factors - Two Ways to Try RSA SecurID Access for Free
Also check out the product edition feature matrix - RSA SecurID Access Editions | RSA
Nathan