Hi All, I need to get partially automatic client authentication working. Without the need to manually add proxy server settings within I.E. (& without the requirement for the Session Auth agent..)
I have setup the checkpoint rulebase bits as follows. [EMAIL PROTECTED] > any > any traffic > http > Client Auth (Partially automatic) With this set-up, I get no prompts for username / password whilst trying to browse the WWW!! If I tweak the "fwauthd.conf" on the Nokia to say: 80 fwssd in.ahttpd wait 80 from the default wait of -2 ' (even tried a '0' setting) The Voyager port was also amended to 81, even though we used SSL port 443 incase that was causing the issue prior to the file change.. This scenario now prompts for username & password via Internet Explorer at last but fails to accept ANY username / password?? However, If I use the firewall IP address as a proxy server within Internet Explorer, it works fine (accepts user details & WWW browsing works as expected..) But this scenario is of course no use to us due to the amount of manual re-configuration required and the fact most of the PC's are laptops and hence will be accessing via many different firewalls / requiring changing at each location..... Unless of course you can dynamically proxy someway? Any help GREATLY appreciated.. Wayne. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
