Question: If Mi-Token is installed on an existing IAS server that is currently supporting one factor user authentication (uid/password), does it require all exiting IAS Radius clients to immediately use two-factor authentication or is there a migration configuration?
Answer: Mi-Token once installed is initially disabled, and won't disrupt your existing IAS Radius clients. To enable Mi-Token you will need to create a new connection request policy, and enable Mi-Token for that policy.