NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] IKE Hybrid :problem for creating certificate




when you're executing the certify command it should be:

fw internalca certify - o firewall_object_name

Thats all!

If that still doesn't work, try both commands again but with the -force
option at the end.  that will force the re-creation and re-certification of
the CA

ie:

fwstop
fw internalca create - dn "o=mycompany, c=mycountrycode" -force
fw internalca certify -o firewall_object_name -force
fwstart

that should do it,

Cheers,

Ashleigh Martin
Senior Systems Engineer
Data#3 Group Pty Ltd
Ph: +61 3 9864 2000
Fx: +61 3 9864 2099
mailto: [email protected]
Web Site: http://www.data3.com.au


                                                                                                                                        
                    "David Bazillio"                                                                                                    
                    <[email protected]>               To:     <[email protected]>                  
                    Sent by:                                    cc:                                                                     
                    [email protected]        Subject:     [FW1] IKE Hybrid :problem for creating certificate         
                    kpoint.com                                                                                                          
                                                                                                                                        
                                                                                                                                        
                    20/06/2001 11:17 PM                                                                                                 
                                                                                                                                        
                                                                                                                                        



Hi everybody,

We would like to implement IKE hybrid, we have Chekpoint FW 1- VPN1 4.1 Sp3
for the module management and also for the firewall itself.


On the management console:
1) fwstop
2) fw internalca create -dn "o=mycompany, c=mycountrycode"
3) fw internalca certify -o myfwhostname "o=mycompany, c=mycountrycode"
4) fwstart

But, the certificate doesn't appear in the GUI management although CA and
certificate have been created succesfully and there is no server of
certificate authority, is it normal?

Can anyone help me?

Another question, we use SecuRemote 4.1 Sp3-DES pointed to the external IP
adress of our firewall,
The connection begins with a topology download, but does the connection has
to be made with the firewall itself or with the console management ?

Thanks

David






================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.