Hi all,
I found a way how to execute a script up on successful VPN connect (based on:
http://lists.virus.org/fw1-0504/msg00018.html) .
1. open "guidbedit" (or the equivalent commandline tool) and login
2. open the "properties" table (it's below "global properties")
3. select the object "firewall_properties"
4. scroll down to the field name "desktop_post_connect_script"
5. change the value of the field "desktop_post_connect_script" to the script
(for example "C:\logon.bat" or if you like to run a central logon script
"\\servername\netlogon\logon.bat")
Please note that almost all environment variables are unavailable in this
script, you will need to make a workaround if you need them.
6. If you want to display the execution on the clients set the value of the
field "desktop_post_connect_script_show_window" to "true"
7. Save the changes
8. Reinstall the policy
9. For immediate check you can delete the site in secureclient and recreate it.
Rolf
-----Ursprüngliche Nachricht-----
Von: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT
AMADEUS.US.CHECKPOINT DOT COM] Im Auftrag von Scheurer Rolf
Gesendet: Dienstag, 11. April 2006 15:07
An: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Betreff: [FW-1] AW: [FW-1] secureclient: execute script after VPN connect?
Hi,
Thanks .
we already using SDL, but it's not flexible enough for our users.... That's
why I'm looking for running a script after VPN login
Rolf
-----Ursprüngliche Nachricht-----
Von: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT
AMADEUS.US.CHECKPOINT DOT COM] Im Auftrag von Sean Donaghey/HDGH
Gesendet: Dienstag, 11. April 2006 14:13
An: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Betreff: Re: [FW-1] secureclient: execute script after VPN connect?
You could always look at enabling Secure Domain Login. SDL allows you to first
authenticate to the firewall, and then run any login scripts.
Sean
Scheurer Rolf <Rolf.Scheurer AT MATHYSMEDICAL DOT COM> Sent by: Mailing list
for discussion of Firewall-1 <FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
04/11/2006 07:34 AM
Please respond to
Mailing list for discussion of Firewall-1 <FW-1-MAILINGLIST AT
AMADEUS.US.CHECKPOINT DOT COM>
To
FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
cc
Subject
[FW-1] secureclient: execute script after VPN connect?
Hi,
I'm wondering if there exist the possibility to execute a script after the
secureclient successful connected by VPN.
The background of this problem is, that the login script isn't executed on the
windows clients when they are not connected to the domain at logon time.
Does anybody know a way how to execute a script after a successful connect to
the VPN?
thanks and kind regards,
rolf
=================================================
To set vacation, Out-Of-Office, or away messages, send an email to LISTSERV AT
amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
The information contained in this e-mail message is confidential and protected
by law. The information is intended only for the person or organization
addressed in this e-mail. If you share or copy the information you may be
breaking the law. If you have received this e-mail by mistake, please notify
the sender of the e-mail by the telephone number listed on this e-mail. Please
destroy the original; do not e-mail back the information or keep the original.
=================================================
To set vacation, Out-Of-Office, or away messages, send an email to LISTSERV AT
amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages, send an email to LISTSERV AT
amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
