Even though its inherently insecure by sending credentials in the clear?
-----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Hugo van der Kooij Sent: Wednesday, January 17, 2007 9:40 AM To: [email protected] Subject: Re: [FW-1] SecureClient Radius CHAP Authentication On Wed, 17 Jan 2007, Jason Aley wrote: > If I allow PAP authentication on the RADIUS (IAS) server I can > authenticate and everything is fine and dandy, however, if I restrict > the connection to MSCHAP or MSCHAPv2, I get Access denied - wrong > username or password. > > has anyone got any ideas? Don 't use it. CP does not support anything but PAP because CHAP needs to do a different handshake. Hugo. -- [EMAIL PROTECTED] http://hvdkooij.xs4all.nl/ This message is using 100% recycled electrons. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
