Has anybody ever exposed the live portal to the internet and if so have you implemented enhanced security such as 2-factor authentication e.g. SecurID, challenge cards on top of normal user/pwd?
... or something similar to the online banking such as confirming a random sequence of data from a security word?
Thanks in advance,
to achieve this, you can make use of JAAS (Java authentication and authorization services). you may want to have a look at a teched session which covers this topic in more detail:
https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/documents/a1-8-4/leveragin... external authentication based on industry standards.pdf
The session is also available as a recorded session: