The most secure authentication, in my opinion, is RSA SecurID authentication
which utilizes the One Time Password (OTP). SecurID also comes with native
Radius which is very to configure. One the other hand, if $$$ is an issue,
I would definitely go with FreeRadius running on either Linux or OpenBSD
cisco4ng
CCSE-NG, CISSP
Juniper Certified Network Internet Specialist (JNCIS)
CCIE Security #16081
no-need to-list <ogos69 AT YAHOO DOT COM> wrote:
Radius work fine with AD....what kind of Radius are you using?
SteelBelted Radius (Funk) and Cisco ACS worked and is working fine for us....
Ray wrote: I'm not sure I understand. Do you mean they want to use LDAP and
maintain a
totally separate directory from AD? If so, why do they want to do that?
If they just don't want to buy SmartDirectory, is using the Windows Server
IAS (Internet Authentication Service) a possibility? It's pretty basic, but
it do work.
Ray
>From: Robbie Elliott
>Reply-To: Mailing list for discussion of Firewall-1
>
>To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
>Subject: [FW-1] LDAP / Radius Server Recommendation
>Date: Fri, 21 Apr 2006 11:16:33 -0600
>
>Does anyone have a LDAP server that they recommend other than M$ AD?
>
>
>
>What about a Radius server?
>
>
>
>I have someone interested in using one of these technologies, but they do
>not want to use their M$ AD.
>
>
>
>Thanks,
>
>Robbie
>
>
>
>
>=================================================
>To set vacation, Out-Of-Office, or away messages,
>send an email to LISTSERV AT amadeus.us.checkpoint DOT com
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>fw-1-owner AT ts.checkpoint DOT com
>=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
---------------------------------
New Yahoo! Messenger with Voice. Call regular phones from your PC and save big.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
---------------------------------
Celebrate Earth Day everyday! Discover 10 things you can do to help slow
climate change. Yahoo! Earth Day
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
