[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] ACE/Server v5 used to authenticate SecureClient users
The most recent experience I've had with the "user is not properly defined" messages was due to a mismatch of DES vs. 3DES. The firewall was configured to use 3DES, but the SR client was the DES version, not the 'strong' (3DES) version. However, I'm not using SecurID, so your problem could be a different one altogether. Lars Holmquist <[email protected]> To: [email protected] Sent by: Mailing list for cc: discussion of Firewall-1 Subject: [FW-1] ACE/Server v5 used to authenticate <[email protected] SecureClient users kpoint.com> 05/16/2002 03:41 AM Please respond to Mailing list for discussion of Firewall-1 Hi, I am also trying to use SecurID to authenticate SecureClient users. It works fine to use the ACE-server to authenticate a user opening a session to the FW on port 900 but not to use with SR/SC. I am running CP FW 4.1 on NT. Have used documents "Hybrid Mode IKE for SecuRemote Authentication" and "RSA SecurID Ready Implementation Guide" but no luck yet. Error messages differ, the most common is "the user is not properly defined" What is the catch? Lars NOTE: This electronic message and attachment(s), if any, contains information which is intended solely for the designated recipient(s). Unauthorized disclosure, copying, distribution, or other use of the contents of this message or attachment(s), in whole or in part, is prohibited without the express authorization of the author of this message. ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|