hi, assuming you have a licence don't forget to import the checkpoint-ldap-schema to your nds. take a look at:
http://support.checkpoint.com/kb/docs/public/firewall1/4_0/pdf/configuring-ldap.pdf page #12 bye, m. At 12:38 13.02.2002 -0500, you wrote: >Your reseller lied to you. You need the Account Management License installed to use >an external LDAP directory. You can manage your directory with the AMC without this >license but the FW won't even look to it. > >Chris >-----Original Message----- >From: Anuska Aragon Fernandez [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, February 13, 2002 12:02 PM >To: [EMAIL PROTECTED] >Subject: [FW-1] ldap authentication > >Hi. > >I have fw-1 NG installed in a RedHat 7.2 machine and a Netscape Directory server. >I'd like to do authentication using ldap. >I don't have the LDAP Account Management license (My reseller says I don't need it to >do authentication), so I can't check the >option "Use LDAP account management" in the Global Properties form. >I can define my LDAP Account Unit, I can use it to see and modify my LDAP directory >structure and users and to define external groups. >I can use external groups in client authentication rules. But when I try to >authenticate I get the message "Access denied by Unix" > >I don't known which Authentication Schema should I use. I can choose between >"Undefined", "SecurID", "VPN-1 & Firewall-1 Password", "OS Password", "RADIUS", >"S/Key", "AXENT Pathways Defender" and "TACACS". >I have tried "Undefined", "VPN-1 & Firewall-1 Password" and "OS Password" and none >of them works. >I don't know if this is the problem or there is some configuration problem. > >Any help will be greatly appreciated. >Thanks in advance. >-- > >A n u s k a A r a g � n > >Servicio Inform�tico e-mail: [EMAIL PROTECTED] > >Universidad de La Rioja Tf.: +34 941 299233 > >Av. de La Paz 93, 26004 Logro�o Fax: +34 941 299180 > ------------------------------------------------------------------- Markus Hofbauer IT-Service phone : +43 (1) 60 126-34 Internet & Security fax : +43 (1) 60 126-555 Bacher Systems EDV GmbH mail: [EMAIL PROTECTED] Wienerbergstr. 11B www : http://www.bacher.at/ A-1101 Wien, Austria, Europe ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
