Re: [FW-1] SecurID and ClientAuth error

Tue, 15 Jan 2008 10:48:39 -0800 

I think the user just doesn't know how to authenticate...;-) So, you can forget 
this "problem"...

-lari-



-----Original Message-----
From: Mailing list for discussion of Firewall-1 on behalf of Lari Luoma
Sent: Tue 1/15/2008 5:25 PM
To: [email protected]
Subject: [FW-1] SecurID and ClientAuth error
 
Hi!

What could be wrong with SecurID-authentication...? From the user's point of 
view everything goes fine and he won't get any error messages, but in the 
firewall log, there is the following alert and the connections in 
client-authentication rules don't work. The system is NGX_R60 running on IPSO 
4.1 build_033.



Number:                         2939932
Date:                                   15Jan2008
Time:                                   14:56:48
Product:                                VPN-1 Pro/Express
Interface:                              daemon
Origin:                                 fw1 (123.xxx.xxx.xxx)
Type:                                   Alert
Action:                                 Reject
Protocol:                               tcp
Service:                                securid-auth-port (259)
Source:                                 10.120.165.40
Rule:                                   0 - Implied Rules
Source Port:                    3102
User:                                   E0287881
Authentication Method:  Client Authentication
Information:                    rpc_prog: 0
                                        reason: Authenticated by SecurID

Thanks!

-lari-


Lari Luoma
Senior Network Security Specialist
Mainframe Consulting Oy
[EMAIL PROTECTED]
+358-45-6576820
www.mainframe.fi


=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================




Scanned by Check Point Total Security Gateway.


=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================

Reply via email to