[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] User authentication problem
Attempt to delete his user/WS object from the group, install policy, reinsert it back, reinstall policy and see if it works. Another option is that the IP address he gave you is not the ip address the FW is seeing him coming from. You can have him perform some operation on your FW from outside and you check your logs and see what IP address is showing up there. HTH, Mike > -----Original Message----- > From: [email protected] [SMTP:[email protected]] > Sent: ã éåìé 25 2001 18:18 > To: [email protected] > Subject: [FW1] User authentication problem > > > Dear All > > Recently one of our external clients changed one of his machines: from a > SGI to a Linux box, with a new IP address. I thought it would be just a > simple matter to update the workstation object with the new IP address > then > he could continue to work as before. But not so. He is being denied > access by the cleanup rule with this message (he is using telnet to log > in): > > reason Access denied to resource: User not in allowed group(s). > > We use User Authentication for his access with this rule: > > usergroup@machingroup our-internal-machines Authenticated User Auth .... > > We are using 4.1 SP3 (our other offices which use SP2 don't have the same > problem) > > Any suggestions? > > Thanks. > > Huiqi Liu > Veritas DGC Ltd. > > > > ========================================================================== > ====== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ========================================================================== > ====== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|