Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] ACE/Server v5 with Checkpoint authentication?

To: [email protected]
Subject: Re: [FW-1] ACE/Server v5 with Checkpoint authentication?
From: "Zeltser, Roman" <[email protected]>
Date: Mon, 13 May 2002 15:32:11 -0400
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Sean, remember that ACE/Server is very sensitive to the DNS information. Add
everywhere the list of IPs with corresponding host names. Make sure when you
define the Agent add the domain name (not IP!) and press TAB key, ensure
that the ACE/Server can resolve your host. The node secret will be sent as
soon as you establish correct communication (of course, if everything else
is configured properly). Also, I recommend you to call RSA Security folks.
Their tech support team is outstanding. I wish all other vendors had the
same...

**********************************
Roman Zeltser,
@National Computer Center,
RSIS & DNE



-----Original Message-----
From: Sean Donaghey/HDGH [mailto:[email protected]]
Sent: Monday, May 13, 2002 2:43 PM
To: [email protected]
Subject: [FW-1] ACE/Server v5 with Checkpoint authentication?


Hi,

I am trying to get ACE/Server v5.01 working with a Firewall-1 v4.1 SP3 box,
and I cannot get it too work.  I have looked over the lists archives, and
tried everything that people have suggested, and can not get it too work.
When I do a telnet to the firewall on port 259, and enter the user name
(from ACE/Server user list), and the PIN+passcode, it comes back to me and
state "Unable to activate Secur-ID Authentication", and the Firewall-1 log
viewer, shows an error "SecurID communcation problem".  It looks like the
Node Secret is NOT being sent to the Firewall, and I am unsure why?

I have defined the additional interfaces on the firewall as Secondary
Nodes, and set the Agent Type to: Communications Server.

I have test it out by installing the Win32 ACE/Agent onto the SecurID
server, and testing out the authentication, and that works from there.

Any help would be greatly appreciated.

Thanks,


Sean P. Donaghey
Sr. Technical Analyst
Hôtel-Dieu Grace Hospital
Windsor, Ontario Canada

Tel:Ext. 3717
Fax:Email: [email protected]

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: Re: [FW-1] ACE/Server v5 with Checkpoint authentication?
Next by Date: [FW-1] Policy Editor and SR on same machine?
Previous by thread: Re: [FW-1] ACE/Server v5 with Checkpoint authentication?
Next by thread: Re: [FW-1] ACE/Server v5 with Checkpoint authentication?
Index(es):
- Date
- Thread