You can use RSA SecurID to enable 2 Factor Authentication for end users.

Procedure

1. Select Settings > 2 Factor Auth.
2. Configure the authentication.

   Option	Description
   2nd factor Auth Method	Select RSA SecurID
   Maintain Username	Select Yes to maintain the Username during authentication. The user attempting to authenticate must have the same username credentials for RSA and Domain Challenge. If you select No, the username is not locked and the user can enter a different name.
   External Connections Only	If YES, users inside the network do not need to enter RSA credentials. The distinction between internal and external is configured by the service provider. If NO, all users, both inside and outside of the network, must enter RSA credentials.
   Upload Configuration File	Click Select and navigate to the file named sdconf.rec. Click Open.

3. Click Save.