|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] FW-1 4.1, SecureRemote and RSA SecurID
The client in fact is the firewall module, not the management station. I did realize this when testing authentication through two firewalls. Was a hard job to configure this. The fw module (which includes the inspection module) speaks with the ACE server indeed. When the server says 'yes, it's a valid one' then the fw let the connection establish. Regards, Fabiola Mayorca ----------------------------------------------------- Fabiola Daniela Mayorca Arellano CCSE & CCSA Telefónica Sistemas, sucursal Perú. Los Sauces 374 Piso 10/11 Edificio La Torre Roja. San Isidro - Lima 27 Latin America ----- Original Message ----- From: Dan Hitchcock <[email protected]> To: 'Fabiola Mayorca' <[email protected]>; Matthew Melbourne <[email protected]>; <[email protected]> Sent: Monday, October 30, 2000 12:29 PM Subject: RE: [FW1] FW-1 4.1, SecureRemote and RSA SecurID I've successfully configured SecurID before without installing the ACE/Agent on the firewall. Per Checkpoint documentation, all you need to do is copy the sdconf.rec file to the system32 directory of your NT box and reboot. If this has changed in SP2 of 4.1, please post. A side note: I would expect that the SecurID client would be the managment station, not the inspection module. However, my last implementation had the inspection module and the management station on the same box, so I can't verify that. Dan Hitchcock CCNA, MCSE Network Engineer Xylo, Inc. (formerly employeesavings.com)The work/life solution for corporate thought leaders -----Original Message----- From: Fabiola Mayorca [mailto:[email protected]] Sent: Monday, October 30, 2000 8:27 AM To: Matthew Melbourne; [email protected] Subject: Re: [FW1] FW-1 4.1, SecureRemote and RSA SecurID Hello Matthew, I've worked with RSA SecurID too, and you have to install the ACE/Agent on the Windows machine. There is no other way. The ACE/Agent for Windows NT can be found in your sw package of RSA. If you know spanish, I can send a complete procedure in how to configure. Best regards, Fabiola Mayorca ----------------------------------------------------- Fabiola Daniela Mayorca Arellano CCSE & CCSA Telefónica Sistemas, sucursal Perú. Los Sauces 374 Piso 10/11 Edificio La Torre Roja. San Isidro - Lima 27 Latin America ----- Original Message ----- From: Matthew Melbourne <[email protected]> To: <[email protected]> Sent: Friday, October 27, 2000 2:37 PM Subject: [FW1] FW-1 4.1, SecureRemote and RSA SecurID > > Hi, > > We are using FW-1 4.1 SP1 under Windows NT. We would like to use RSA SecurID > to authenticate SecureRemote connections. However, the inspection module is > communicating with the ACE/Server (version 4.1), but authentications are > failing. We have been hold that we need to install the ACE/Agent on > the firewall. I was under the impression that the FW-1 inspection module had > the necessary APIs to communicate with the ACE/Server, without a need for > a separate ACE/Agent. > > Is it possible to get RSA Authentication working, without installing the > ACE/Agent software? > > Cheers, > > Matt > > -- > Matthew Melbourne > > > > ============================================================================ ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
