NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] SecureID user in Multiple groups



Hi, Checkpoint Techies!

I am hoping someone out there can help me, I have a problem with SecureID
users in multiple groups.

Scenario

UserA, UserB, UserC are in the RemoteUsers group
UserA is also in the RemoteTermUsers group

RemoteUsers@RemoteNet		Webserver	HTTP+FTP	ClientAuth
RemoteUsers@RemoteNet		FTPServer	FTP		ClientAuth
RemoteTermUsers@RemoteNet		TermServer	TCP_3389
ClientAuth

When UserA connects I see him get Auth against first 2 rules but not
TermServer rule. He cannot access the TermServer.
When I change the access to :-

RemoteUsers@RemoteNet 		TermServer	TCP_3389	ClientAuth

He can access the termserver, but so can Users B & C.

Why can he not access it as a member of RemoteTermUsers? Is there a problem
with him being in multiple groups?

Any help would be greatly appreciated!

Russell Goodwin

> _______________________________________________________________________
> 
> LEGAL NOTICE
> 
> Unless expressly stated otherwise, this message is confidential and may be
> privileged.  It is intended for the addressee(s) only.  Access to this
> e-mail by anyone else is unauthorised.  If you are not an addressee, any
> disclosure or copying of the contents of this e-mail or any action taken
> (or not taken) in reliance on it is unauthorised and may be unlawful.  If
> you are not an addressee, please inform the sender immediately.
> 
> 


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents � 2003 Network Presence, LLC. All rights reserved.