This section highlights information for existing customers about important new features in authentication technologies in this release.
Oracle Solaris provides two multifactor authentication technologies – smart cards and one-time passwords (OTP).
For administering and using smart cards, see Using Smart Cards for Multifactor Authentication in Oracle Solaris.
For administering OTP and using mobile authenticators, see Using One-Time Passwords for Multifactor Authentication in Oracle Solaris.
Kerberos in the Oracle Solaris 11.3 SRU21 release is based on a recent version of MIT Kerberos. See Kerberos on Oracle Solaris.
PAM provides modules that can restrict console login to specified users. See How to Restrict Who Can Log In to the Console. Secure administration of immutable zones requires that administrators authenticate to the trusted path through a restricted console. See How to Restrict Access to the Trusted Path Domain.