Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] ldap authentication

To: [email protected]
Subject: Re: [FW-1] ldap authentication
From: Markus Hofbauer <[email protected]>
Date: Wed, 13 Feb 2002 19:18:56 +0100
In-reply-to: <[email protected] house.com>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

hi,

assuming you have a licence don't forget to import the checkpoint-ldap-schema
to your nds. take a look at:

http://support.checkpoint.com/kb/docs/public/firewall1/4_0/pdf/configuring-ldap.pdf

page #12

bye,
m.


At 12:38 13.02.2002 -0500, you wrote:
>Your reseller lied to you.  You need the Account Management License installed to use an external LDAP directory.  You can manage your directory with the AMC without this license but the FW won't even look to it.
>
>Chris
>-----Original Message-----
>From: Anuska Aragon Fernandez [mailto:[email protected]]
>Sent: Wednesday, February 13, 2002 12:02 PM
>To: [email protected]
>Subject: [FW-1] ldap authentication
>
>Hi.
>
>I have fw-1 NG installed in a RedHat 7.2 machine and a Netscape Directory server.
>I'd like to do authentication using ldap.
>I don't have the LDAP Account Management license (My reseller says I don't need it to do authentication), so I can't check the
>option "Use LDAP account management" in the Global Properties form.
>I can define my LDAP Account Unit, I can use it to see and modify my LDAP directory structure and users and to define external groups.
>I can use external groups in client authentication rules. But when I try to authenticate I get the message "Access denied by Unix"
>
>I don't known which Authentication Schema should I use. I can choose between "Undefined", "SecurID", "VPN-1 & Firewall-1 Password", "OS Password", "RADIUS", "S/Key", "AXENT Pathways Defender" and "TACACS".
>I have tried "Undefined", "VPN-1 & Firewall-1  Password" and "OS Password" and none of them works.
>I don't know if this is the problem or there is some configuration problem.
>
>Any help will be greatly appreciated.
>Thanks in advance.
>--
>
>A n u s k a     A r a g ó n
>
>Servicio Informático              e-mail: [email protected]
>
>Universidad de La Rioja           Tf.:    +34 941 299233
>
>Av. de La Paz 93, 26004 Logroño   Fax:    +34 941 299180
>

-------------------------------------------------------------------
Markus Hofbauer                                          IT-Service
phone : +43 (1) 60 126-34                       Internet & Security
fax : +43 (1) 60 126-555                    Bacher Systems EDV GmbH
mail: [email protected]                               Wienerbergstr. 11B
www : http://www.bacher.at/            A-1101 Wien, Austria, Europe

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Follow-Ups:
- [FW-1] Odd Logging Question
  - From: Steve <[email protected]>

Prev by Date: [FW-1] Coexistence 4.1/NG
Next by Date: Re: [FW-1] Multiple Secure Remote One Public IP-
Previous by thread: Re: [FW-1] ldap authentication
Next by thread: [FW-1] Odd Logging Question
Index(es):
- Date
- Thread