Could somebody explain how tokens fit into the VPN world? We currently use Citrix XenApp as our remote access solution and it works very well. But we're considering adding an additional layer of security with tokens. We're not in the SecurID price range but something like SafeWord looks good. To complicate matters, we're also looking at establishing a VPN to allow both direct network access and Citrix. I understand how VPN works in theory and for us, this box looks ideal:
http://www.netgear.co.uk/ssl_vpn_concentrator_ssl312.php
But not sure if this solution would fit in with a token system. I suppose I'm asking what are all the bits in a token based VPN solution? What boxes and bits of software usually make up the blend?
Cheers, Rob.