I have already tried to check this box but it deals with pre shared key for site to site peers.
Philippe BLAVIER International Network Administrator +33 1.46.01.48.22 [EMAIL PROTECTED] -----Message d'origine----- De : Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] De la part de Gary Scott Envoyé : vendredi 3 mars 2006 15:04 À : [email protected] Objet : Re: [FW-1] Secureclient : Could not agree on common methods Do you have pre-share selected under the gateway props/vpn/traditional config? -GS -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of sin Sent: Friday, March 03, 2006 2:44 AM To: [email protected] Subject: Re: [FW-1] Secureclient : Could not agree on common methods Philippe Blavier wrote: > Hi, > > > I have a trouble authenticating my SecureClients with IKE(pre shared key). I > can get them authenticated only using the internal user and password. Trouble > is that the internal password only supports password less than 8 characters. > > On Global properties : > - Preshared key Secret (for Secureclient securemote usersà is checked > - Public key is checked and cant be unchecked > - Hybrid mode is unchecked > > In the user properties > - IKE is checked in the user encryption tab > - a preshared secret has been defined > - public key is checked > - the ike encryption tab is grayed. > > Every time a user attempts to connect the cluster (VPN-1 Express cluster with > IPSO clustering) I get the following message in the log viewer : > > - reason: Client Encryption: Could not agree on common methods. > IKE: Main Mode Sent Notification to Peer: Client Encrypt Notification: [0008] > Could not agree on common methods. > - Check that the user is properly defined. > > I am wondering if this is a licencing issue or a config issue since I get > working the secureclient in office mode using the internal auth methode. > check hybrid mode, install policy and give it a go. (last time i saw this was beacause of hybrid mode not being checked) ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
