[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] ACE/Server v5 with Checkpoint authentication?
Sean, remember that ACE/Server is very sensitive to the DNS information. Add everywhere the list of IPs with corresponding host names. Make sure when you define the Agent add the domain name (not IP!) and press TAB key, ensure that the ACE/Server can resolve your host. The node secret will be sent as soon as you establish correct communication (of course, if everything else is configured properly). Also, I recommend you to call RSA Security folks. Their tech support team is outstanding. I wish all other vendors had the same... ********************************** Roman Zeltser, @National Computer Center, RSIS & DNE -----Original Message----- From: Sean Donaghey/HDGH [mailto:[email protected]] Sent: Monday, May 13, 2002 2:43 PM To: [email protected] Subject: [FW-1] ACE/Server v5 with Checkpoint authentication? Hi, I am trying to get ACE/Server v5.01 working with a Firewall-1 v4.1 SP3 box, and I cannot get it too work. I have looked over the lists archives, and tried everything that people have suggested, and can not get it too work. When I do a telnet to the firewall on port 259, and enter the user name (from ACE/Server user list), and the PIN+passcode, it comes back to me and state "Unable to activate Secur-ID Authentication", and the Firewall-1 log viewer, shows an error "SecurID communcation problem". It looks like the Node Secret is NOT being sent to the Firewall, and I am unsure why? I have defined the additional interfaces on the firewall as Secondary Nodes, and set the Agent Type to: Communications Server. I have test it out by installing the Win32 ACE/Agent onto the SecurID server, and testing out the authentication, and that works from there. Any help would be greatly appreciated. Thanks, Sean P. Donaghey Sr. Technical Analyst Hôtel-Dieu Grace Hospital Windsor, Ontario Canada Tel:Ext. 3717 Fax:Email: [email protected] ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|