I try to evaluate new authentication methods for our users, but I don't really know where to start.The more I read about it, the more compölicated it gets. For example: What's the difference between Advanced authentication methods and NMAS authentication methods?
Currently we use only username/password authentication. The goal is to achieve a higher security level using 2FA, but without complicating it. E. g. using a physical token and/or smartcard and/or OTP.
I'd like to install a testlab with different methods, but I can't find how to get it working. The only howto I found was about yubikey and OTP and using the HOTP NMAS login method.
Are there any howtos or step-by-step instructions how to use e. g. physical rfid token or smartcards to authenticate against eDirectory?
Thanks in advance!