Guys,
One thing you have to be aware if you are using P-1 NG with AI and SecurID is
that everytime you want to launch a smartconsole client from with in the P-1
MDG or another Smartconsole, you have to type in your password again. This
is because in NG with AI or earlier version, checkpoint does NOT cache the
credential. That proved to be a pain in the ass. NGx R60 resolves this
issue.
Other than that, it works great.
Andrew Smaff Matthews <andrewm AT DEMON DOT NET> wrote:
On Wed, Jun 28, 2006 at 04:42:59PM +1000, Dahate, Pramod, VF-AU wrote:
> Hi
> I would like to authenticate my Provider-1 Administrators using SecureID
> tokens. Can anyone advice me the procedure or KB regarding this
> including if any files require to be modified etc.
> Thanks in advance
>
I can only speak for Solaris, but you:
put the usual sdconf.rec file in /var/ace, and mdsstop;mdsstart
On the securID server set up an Agent Host as a "Communication
Server", with the IP of your provider-1 box, making sure the "Node
secret created" ISN'T checked.
Then try to authenticate. If you do so, you should now have a file called
"securid" in /var/ace on the provider-1 device, and on your securID server,
the Agent Host page should now have the "Node secret created" box checked[1].
Smaff
[1] This box is something you only ever uncheck, really, and only then if
you're reinstalling the Agent host.
--
You happen to be here, now.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
---------------------------------
Yahoo! Music Unlimited - Access over 1 million songs.Try it free.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
