Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] NG AI - "The user is not defined properly."

To: [email protected]
Subject: [FW-1] NG AI - "The user is not defined properly."
From: [email protected]
Date: Wed, 30 Jul 2003 13:40:05 -0600
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

NG AI on IPSO 3.7 build 23 and NG AI SecuRemote:

We switched the "Remote Access" -> "VPN - Advanced" -> "User Encryption
Properties" from 3DES to AES-128 for the Encryption Algorithm.  After
pushing the policy and re-authenticating, we get rejects on on Encryption
Scheme: "IKE".  -> reason: "Client Encryption: The user is not defined
properly."  The gateway then sends a "Client Encrypt Notification" with the
error to the client.  After that, they seem to negotiate phase II, and
everything works after that.  I am just curious if you can force the
encryption algorithm on the client, so they don't have to negotiate twice.

-Aaron

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: Re: [FW-1] NG AI and DNS drops
Next by Date: [FW-1]
Previous by thread: Re: [FW-1] Subject: vpn behind nat?
Next by thread: [FW-1] NG to Cisco router VPN setup.
Index(es):
- Date
- Thread