Hi, RTFM. I found the solution.
Authenticating with the SmartDirectory (LDAP) Server using Certificates The SmartCenter Server and its modules can be issued special certificates in order to allow them to communicate with SmartDirectory (LDAP) server. The proper Encryption attributes need to be set in the SmartDirectory (LDAP) Server Properties window, and in addition, the following procedure needs to take place: 1 Use the dbedit command to manually set a flag in the objects_5_0.C file for every desired SmartDirectory (LDAP) server, as well as Replications. Set the ldap_use_cert_auth attribute to true for every entry in the fields attribute of the Account Unit. 2 Log on to SmartDashboard and add a Certificate Authority (CA) object for the CA that will issue the certificate for each Check Point object that uses SmartDirectory (LDAP) certificate based authentication. For more information, see the PKI chapter in the VPN guide. 3 Add a certificate for all necessary network objects (such as VPN, Policy Server, or Firewall) that requires certificate-based SmartDirectory (LDAP) connections. In the VPN page, add a certificate issued by the CA defined above. For more information, see the PKI chapter in the VPN guide. 4 In the Users and Administrators tab of the Objects tree, check the new configuration by opening a connection on one of the Account Units configured to use certificate authentication. Christopher McGill CCSE, CCSA, CCNA ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
