I have an environment in which users are set "token mandatory" by default for PKI (Public Key Infrastructure) login in AD (Active Directory). We have noticed lately that there is an overly large number of users that have requested waivers so that they can logon using username / pwd combo.
I there a way to track instances of "non token" login attempts over a 90 day period? My suspicion is that many of these waivers are not really needed. If I can show a trend of how many users are actually logging on with username / pwd combo vs logging on with PKI tokens, it would help me prove my case.