Well it depends on OS platform which u r using......for unix: 1. In the Ace/Server create the agent host, configure the other interfaces as well in Secondary Nodes and then generate the sdconf.rec file [TRY WITH AGENT TYPE AS UNIX AGENT] 2. Transfer this filw to FW in /var/ace directory 3. Restart the checkpoint services "cprestart" at FW and SmartCenter server
On Checkpoint Smart dashboard: 1. Enable SecurID in firewall object properties authentication tab 2. Create a user with Authentication as SecurID, the name should exactly be similar to what is created in SecurID server 3. Make the user member of certain group 4. Create a rule for this group with action as UserAuth or ClientAuth or SessionAuth 5. Create another rule allowing securID traffic between firewall and SecurID server In case u r using windows..u need to copy file to /winnt/system32 directory....and all the best!! -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] Behalf Of Zubair Jalal Sent: Monday, May 30, 2005 12:51 PM To: [email protected] Subject: [FW-1] How to configure SecurID authentication Hi . Pls let me know if anyone can tell me how to configure SecurID authentication in R55. Where is this SecureID defined -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] Behalf Of Bhavin Gandhi Sent: Monday, May 30, 2005 9:52 AM To: [email protected] Subject: [FW-1] Firewall session failover Hi All, I understand there r 2 modes in CP for redundancy (Correct me if i'm wrong). There is HA where 1 module would act as a backup to the other & load sharing where modules would be in active/active state ie. almost equal session distribution. In any of the modes would there be a session failover also, if the primary module fails or is down? Thanks in advance..... Regards, BG Confidentiality Notice The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information. If you are not the intended recipient, please notify the sender at Wipro or [EMAIL PROTECTED] immediately and destroy all copies of this message and any attachments. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= Confidentiality Notice The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information. If you are not the intended recipient, please notify the sender at Wipro or [EMAIL PROTECTED] immediately and destroy all copies of this message and any attachments. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
