[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Client Auth with SSL
1. Define the root CA in your firewall policy (install the root certificate) 2. Create a certificate request for your firewall using that CA within the policy editor 3. Have the CA generate a certificate 4. Install the certificate in the firewall policy 5. Edit fwauthd.conf so that it has a line like this (assuming port 443 for ssl) 443 in.ahclientd ssl:CertName (whatever you named the cert in the firewall policy in step 2) 6. fwstop/fwstart -----Original Message----- From: Donald Stahl [mailto:[email protected]] Sent: Sunday, March 03, 2002 7:04 PM To: [email protected] Subject: [FW-1] Client Auth with SSL >From what I have read it is possible to use SSL for Client Auth using a web browser, but I am having a hard time finding information on how to configure it. Does anyone know of a good document on how to set it up? >From what I have read, you need to specify ssl at the end of the fwauthd.conf line for the client auth service. What else needs to be done? -Don ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ##################################################################################### CONFIDENTIAL: This e-mail, including its contents and attachments, if any, are confidential. It is neither an offer to buy or sell, nor a solicitation of an offer to buy or sell, any securities or any related financial instruments mentioned in it. If you are not the named recipient please notify the sender and immediately delete it. You may not disseminate, distribute, or forward this e-mail message or disclose its contents to anybody else. Unless otherwise indicated, copyright and any other intellectual property rights in its contents are the sole property of Fuji Securities Inc. E-mail transmission cannot be guaranteed to be secure or error-free. The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. Although we routinely screen for viruses, addressees should check this e-mail and any attachments for viruses. We make no representation or warranty as to the absence of viruses in this e-mail or any attachments. Please note that to ensure regulatory compliance and for the protection of our customers and business, we may monitor and read e-mails sent to and from our server(s). ##################################################################################### ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|