IBM Tivoli Access Manager for e-business (TAMeb) is a centralized policy management solution for distributed applications. IBM Tivoli Access Manager WebSEAL is a high-performance, multi-threaded Web server that applies fine-grained security policy to Access Manager’s protected Web object space. With the IBM TAM WebSEAL, e-business can leverage on the fine-grained access control and seamless web single sign-on to operate a multi-server, multi-domain web infrastructure for their employees, partners and customers. 

By default, IBM TAM WebSEAL authenticates users with one-factor only, e.g. username and password. This document describes how to enhance the IBM Tivoli Access Manager for e-Business web infrastructure with two-factor authentication using the WebSEAL External Authentication Interface (EAI) and the DualShield SSO service provided by the DualShield Unified Authentication Platform.