[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] HTTP client authentication & Securid "new pin mode"
thanks josh ...ya it works with the port 259 ....but i must use the http via port 900 for all my browser users on the internet. I have tried all combos of the client auth properties to no avail. -----Original Message----- From: Cepeda, Josh [mailto:[email protected]] Sent: Thursday, July 19, 2001 4:48 PM To: 'Patterson, Gary' Cc: '[email protected]' Subject: RE: [FW1] HTTP client authentication & Securid "new pin mode" You may need to edit your client authentication properties to partially automatic. If not, below is an alternative: Telnet to your firewall on port 259 Below is what you should see # when selecting no for automatic PIN generation Check Point FireWall-1 authenticated Telnet server running on telefw01 User: johndoe PASSCODE: ****** (type in active token only) User johndoe authenticated by SecurID New PIN required. Do you wish to continue? (y/n) [n] y Generate automatically ? (y/n) [y] n Enter your new PIN, containing 4 to 8 characters: ***** User authorized for standard services (1 rules) Authorization will be disabled when the session is closed. # when selecting yes for automatic PIN generation Check Point FireWall-1 Client Authentication Server running on telefw01 User: johndoe PASSCODE: ****** User johndoe authenticated by SecurID New PIN required. Do you wish to continue? (y/n) [n] y Generate automatically ? (y/n) [y] y Your new PIN is: hzqy New PIN accepted User authorized for standard services (1 rules) Authorization will be disabled when the session is closed. This process allows you to set your PIN and sync it at the same time. The Next time you hit a destination that requires SecurID you put in your username and passcode which consists of your PIN and currently active token. -----Original Message----- From: Patterson, Gary [mailto:[email protected]] Sent: Thursday, July 19, 2001 3:26 PM To: 'Cepeda, Josh' Subject: RE: [FW1] HTTP client authentication & Securid "new pin mode" Josh ....Have you done this with the port 900 client authenticator via a browser? I'm running 4.0 with and latest patch rel. It doesnt do anything in new pin mode but say authentication failed. -----Original Message----- From: Cepeda, Josh [mailto:[email protected]] Sent: Wednesday, July 18, 2001 1:36 PM To: 'Patterson, Gary' Subject: RE: [FW1] HTTP client authentication & Securid "new pin mode" when in new pin mode you need to just put in the token number by itself and then enter your pin when prompted. -----Original Message----- From: Patterson, Gary [mailto:[email protected]] Sent: Tuesday, July 17, 2001 9:39 AM To: '[email protected]' Subject: [FW1] HTTP client authentication & Securid "new pin mode" Does the port 900 http client auth work with "new pin mode"? I can't make it work, has anyone been successful?? Gary [email protected] ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|