Re: [FW-1] UserAuthentication on R55

Subject:	Re: [FW-1] UserAuthentication on R55
From:	Fernando Hagelsieb <fhagelsieb-list AT PRODIGY.NET DOT MX>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Fri, 28 Jul 2006 20:39:36 -0500

Hi:

As I remember, the User Authentication action only works with HTTP, FTP,Telnet.

try first with HTTP, and then you have to change the fwauthd.conf file,check the Solution ID: #sk14340 on

support.checkpoint.com

or :

point first a user to an HTTP page, collect the User credentials, and thendirect the user to the OWA using HTTPS


change your FW-1 rule to:

Source:Any@user - Destination:OWA IP , HTTP IP- Service: https,http ->Action: Client auth.

Then, after the user is authenticated with http, FW-1 will permit you to theOWA


Hope this help

----- Original Message -----From: "Alvaro Gastambide" <agastambide AT SADVISOR DOT COM>

To: <FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
Sent: Thursday, July 27, 2006 7:35 PM
Subject: [FW-1] UserAuthentication on R55

Hi, i have a problem, i configured a rule for user authentication for use
OWA.
The rule is: Source:Any@user - Destination:OWA IP - Service: https -
Action: User Authentication.

When i connect to the public IP of owa, i get the firewall autethication
windows, i put the user and password but on Smart Tracker i get an error.
The error says: the user not have a rule to log in, and after put the user
3 times the browser shows me: Error 401, cannot access the document.

Anybody knows what happen ? Thanks !!!

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================


=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Errror in installing HFA-03 on Provider-1 NGx R60 on SPLAT, cisco4ng Re: [FW-1] Errror in installing HFA-03 on Provider-1 NGx R60 on SPLAT, Ray [FW-1] UserAuthentication on R55, Alvaro Gastambide Re: [FW-1] Errror in installing HFA-03 on Provider-1 NGx R60 on SPLAT, cisco4ng Re: [FW-1] Errror in installing HFA-03 on Provider-1 NGx R60 on SPLAT, Ray Message not available Message not available Re: [FW-1] UserAuthentication on R55, Fernando Hagelsieb <=

Previous by Date:	Re: [FW-1] IPSO Clustering problem, Yang Xiao
Next by Date:	[FW-1] Browsing with User Authentication, Desaulniers Marc
Previous by Thread:	Re: [FW-1] Errror in installing HFA-03 on Provider-1 NGx R60 on SPLAT, Ray
Next by Thread:	[FW-1] FTP WELCOME SCREEN, Garner, Annette K BETH
Indexes:	[Date] [Thread] [Top] [All Lists]