Re: [FW-1] User authentication mechanism[s]

Subject:	Re: [FW-1] User authentication mechanism[s]
From:	Peter Goodridge <petegdr AT YAHOO DOT COM>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Fri, 19 Dec 2003 08:59:01 -0800

Hi SG,

I use client auth for this kind of stuff.  It works
fine.  It's not encrypted however unless you take some
extra steps.  The other downside being that if your
user authenticates from a multiuser system, or from
behind a NAT device other folks will also have access.

HTH,
Pete
--- Security Guy <firewall_security AT HOTMAIL DOT COM>
wrote:
> We have a device that resides within our DMZ, a
> select group of DHCP users will need access.  I
> don't really want to give the users static IP
> addresses, can some kind of alternate authentication
> be used?  I've tried User Authentication, only to
> find out it only supports telnet rlogin http,https
> and ftp.  I would like to keep the users on DHCP
> IPs,  they will be accessing the DMZ resource via a
> RDP connection [tcp port 3389]  Will client
> authentication work?
>
> thoughts | ideas | suggestions
>
> Thanks!
>
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> fw-1-owner AT ts.checkpoint DOT com
> =================================================


__________________________________
Do you Yahoo!?
New Yahoo! Photos - easier uploading and sharing.
http://photos.yahoo.com/

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] User authentication mechanism[s], Security Guy Re: [FW-1] User authentication mechanism[s], Peter Goodridge <= Re: [FW-1] User authentication mechanism[s], Security Guy Re: [FW-1] User authentication mechanism[s], Security Guy Re: [FW-1] User authentication mechanism[s], Matthias Leu Re: [FW-1] User authentication mechanism[s], Chris Hoff

Previous by Date:	Re: [FW-1] Management error, Chris Hoff
Next by Date:	Re: [FW-1] Gateway doesn't support UDP encapsulation ?, Chontzopoulos Dimitris
Previous by Thread:	[FW-1] User authentication mechanism[s], Security Guy
Next by Thread:	Re: [FW-1] User authentication mechanism[s], Security Guy
Indexes:	[Date] [Thread] [Top] [All Lists]