NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Web Surfing Authentication using NT Domains



You should be able to use any domains that's 'visible' from the Radius NT
server. I mean, you can have multiple NT domains on your LAN and
authenticate users against their own domain, using Microsoft's syntax :
DOMAIN\user and password. The drawback of this authentication method, is any
user having an NT account can authenticate : you will indeed have to create
a 'generic*' user in the Checkpoint and as you can't restrict access in the
Radius Server ...
You could do this with any commercial product such as Cisco's, Shiva's,
Steel Belted ....
What I personnally do to avoid this is create all accounts in the FW
specifying Radius as an authentication scheme. This way, only users you have
created can authenticate.

Emmanuel

-----Message d'origine-----
De: Toth, David [mailto:[email protected]]
Date: jeudi 25 janvier 2001 03:55
À: 'Emmanuel Bailleul'; Mehok, Thomas
Objet: RE: [FW1] Web Surfing Authentication using NT Domains


Thanks Emmanuel,

Do you know if I can just use the NT domains that we have already set up?

Merci Beaucoup,

Dave.

-----Original Message-----
From: Emmanuel Bailleul [mailto:[email protected]]
Sent: Wednesday, January 24, 2001 3:35 PM
To: 'Toth, David '; '[email protected] '
Subject: RE: [FW1] Web Surfing Authentication using NT Domains


You could also use Microsoft's free Radius server present on the Option Pack
4 CD. It's called IAS, it only runs on NT server and can authenticate users
against one ore more domains' SAMs.

Emmanuel Bailleul
Ascom Adilan
Annecy le Vieux - FRANCE
 

-----Original Message-----
From: Toth, David
To: [email protected]
Sent: 24/01/01 18:10
Subject: [FW1] Web Surfing Authentication using NT Domains


All,

Is is possible to use your NT domains to authenticate Internet users
thru FW-1 or do I have to use an LDAP or RADIUS server?

Thanks in Advance,

Dave.


========================================================================
========
     To unsubscribe from this mailing list, please see the instructions
at
               http://www.checkpoint.com/services/mailing.html
========================================================================
========


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.