Customers may need to use multi authentication factors to perform login to their systems. So, this may also involve PAM.

In some of these scenarios, Google Authenticator may play the role of an OTP (One Time Password) generator.

But, can Layer 7 PAM (Privileged Access Manager) be integrated with Google Authenticator?

Component : PRIVILEGED ACCESS MANAGEMENT

Release : All Versions

As this is not documented, then it's not certified or supported out of the box. 

As it would need to be evaluated and tested, HCL services should be engaged, who would help in evaluation and implementation, if possible.

So, there is no direct integration of Google Authenticator to CA PAM.

Maybe, you can envisage the possibility to integrate Google Authenticator to a RADIUS system as mentioned here:

FreeRADIUS Google Dual Factor Authenticator

and then try to integrate this RADIUS with PAM.

But, as we have previously mentioned, this would be something to perform by HCL Services and it would be not supported by the standard Broadcom support.