Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] authentication

To: checkpoint <[email protected]>
Subject: RE: [FW1] authentication
From: "Hartmann, Josef" <[email protected]>
Date: Mon, 18 Jun 2001 22:08:09 +0200
Sender: [email protected]

Hi,

transparent client auth including single sign on (SSO) is possible using
MetaIP/ UAM/ UAT. This works for any domain member. However you can do this
using client authentication (using telnet to port 259) as well. This way
only authenticated users are allowed for passing the firewall. Works for me.


Regards,

Josef

> -----Original Message-----
> From:	Neo [SMTP:[email protected]]
> Sent:	Thursday, June 14, 2001 2:07 PM
> To:	checkpoint
> Subject:	[FW1] authentication
> 
> Hello,
>  
> I have a question, hopefully somebody could give me a hand with.  This
> might be trivial but i need to find a solution.  I need to authenticate my
> internal users for access outbound (internet), but for ALL services, not
> just standard HTTP, FTP, TELNET, etc...  I have a 4 internal subnets
> (10...xxx) with various users scattered thoughout them that need
> access out.  All others I want kept in.  My company does not want to do
> this via IP.  In fact, they would like to have the authentication use
> basic NT login (or a provided list) so all authtentication would be
> transparent.  I cannot user any user auth, due to the limitation of
> services.  Transparent Client auth would be fine, but once a user on the
> network authenticates, all users under that same network are getting
> passed though the firewall, i've tested this many times and unless I"m
> setting this up wrong (which I dont believe i'm doing), this doesnt seem
> to work.  I havent tested session auth as of yet, but I'm not sure if that
> will work either.  I was curious to know if anybody else has this setup
> and what they are using and how.
>  
> Any help would be great.
>  
> Thanks...


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] WINDOWS 2000
Next by Date: [FW1] what occurs first NAT or RULEBASE
Previous by thread: [FW1] authentication
Next by thread: [FW1] Distributed Installation with Mgmt & Firewall module both in the same machine - Is it possible at all ?
Index(es):
- Date
- Thread