Many 3rd party token servers (e.g. OTP token servers) can be connected to Airlock IAM over the RADIUS protocol.
Usually, token checks over RADIUS are used to perform the 2nd authentication step after username/password authentication.
The following figure depicts the standard case:
- Check username and password against IAM DB (or LDAP or AD).
- Check OTP code against token server.