[Avertive]

Can firewall administrator remote CLI sessions (ssh) be configured to authenticate to securid on SPLAT (R55) rather than the local user store? We're using similar external, stronger authentication methods for router/switch adminstration and am hoping we can with firewalls too.

Could it be as easy as copying the necessary sdconf.rec file into /var/ace on SPLAT and establishing a client authentication rule (source = ssh stepping stone, destination = firewall, authenticated services = ssh)? Or do these actions only works for SecuRemote users rather than firewall administration? Or does SPLAT not like it (most documentation I've read in FAQ thus far predates SPLAT)?

Thanks in advance!