Hi Sunil I just spoke with my boss...
He said we're not using a RAS server and the ACE servers are our Radius servers. Basically, we have our firewall (Checkpoint) sending the SecuRemote info to the ACE servers (which are running Radius). If it helps, they are ACE 3.3 servers with Radius enabled. When the master is up, everything works fine and checkpoint returns a message saying "user authencticated by RADIUS" When the master is down, the event logs tell us that the slave takes over, but anyone trying to log in get a message that the RADIUS servers are not responding. Since I am new at this, I may not be completely answering your question. Again, thank you so much for your assistance Russell -----Original Message----- From: Sunjo [mailto:[EMAIL PROTECTED] Sent: Thursday, March 18, 2004 4:17 AM To: [EMAIL PROTECTED] Subject: Re: [FW-1] The ace slave not authenticating Hi Russel, That is great... Which Radius server you are using. ? and what is the RAS server you are using? Sunil "Etts, Russell" <[EMAIL PROTECTED]> wrote: HI all The information that Sunjo provided below corrected the issue (thanks again Sunjo). However, I have one more question: When I shut down the services on the master server and attempt to log in, I get an error on the client that says the radius server is not responding. I can see in the event viewer on the slave server that the slave will now take over authentication, but I can't authenticate with the client. I have waited for the slave heartbeat period to expire (300 seconds), dialed in again and tried with the same results. Help?? Thanks Russell -----Original Message----- From: Sunjo [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 17, 2004 4:04 AM To: [EMAIL PROTECTED] Subject: Re: [FW-1] Help with ACE server??? Russel, The following may help.. 1) Make sure you have confiigured with correct domain. (and the domain name configiured in Mycomputer properties) 2) When u specify only the slave name in the master, the master should display the domain name by itself. ie, specify ace23, the master should add and display ace23.yourdomain 3) once this is done reboot the ace server and verify the configuration. 4) Copy the files u mentioned.. "Etts, Russell" wrote: Hi everyone I know that this is a checkpoint list, but at this point I have no idea who to pose this question to. I have an ACE server, version 3.3. Recently, our slave server died. I just brought up another slave server, same IP address but a different name. I went into the configuration manager tool on the Master and changed the name. I rebooted the master. I copied the following five files onto a floppy: license.rec; sdconf.rec; server.cer; server.key and sdti.cer. I brought up the slave and put the floppy into the "A" drive. I inserted the cd, chose the option to install as a slave, pointed the program to the floppy, verified the information and hit net. I now get an error that says the following: "Ace/server Setup: This host does not appear in the configuration record as a slave. Correct the configuration record on the master and slave before reinstalling." "This host name: ace23 Config master: ace1 Config slave: ACE23." Can anyone help me out with this?? Thanks Russell ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= Do you Yahoo!? Yahoo! Mail - More reliable, more storage, less spam ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= Do you Yahoo!? Yahoo! Mail - More reliable, more storage, less spam ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
