Ive used the netscape product, it works fine. Try the 4.x version of the
directory server, you can download it from the netscape web site. Apparently
its about $7.50 a license. Alternativley if you run Microsoft Exchange as we
do here you can use the LDAP service that gets installed with the product.
Cheers
Andy
-----Original Message-----
From: Mike Glassman - Admin [mailto:[EMAIL PROTECTED]]
Sent: 26 June 2000 08:46
To: 'Martin, Andy'
Subject: RE: [FW1] LDAP Integration
Martin,
Excellent info, many thanks.
Which LDAP software are you using for this ?
We had tried this with the Netscape LDAP server but it failed miserably.
Info on that would be appreciated.
Mike
> -----Original Message-----
> From: Martin, Andy [SMTP:[EMAIL PROTECTED]]
> Sent: a ea?e 26 2000 15:53
> To: Fw-1-Mailinglist (E-mail)
> Subject: [FW1] LDAP Integration
>
>
> Hiya,
>
> Heres the rsults of my mucking about.
>
> I have only made it work on the following platforms.
>
>
> Firewall-1 Version 4 SP 6
>
> Exchange 5.5 SP3
>
> Run the account managment client on the Firewall. Point it at the Exchange
> server. Set the root of the query as your country code (selected when you
> installed exchange) i.e. c=GB. You should see all the exchange servers
> listed in the left hand window. If you double click a server and then type
> a
> name in the lookup up field (top right of window) address list values will
> be returned in the right hand pane containing the value you typed in.
>
> look closley at the values returned the bit we want is the login name and
> the directory container info.
>
>
> it should be something like
>
> andy.martin cn=Recipients,ou=-site name-,o=Exchange directory name
>
>
> Create in your rule base a LDAP account unit using the directory container
> info as the branch info.
>
> Create an auth rule using the account unit.
>
> try to login to the firewall with the login name shown in the account
> managment client and your NT domain password.
>
> It works for me.
>
>
> Cheers
>
>
> Andy
> **********************************************************************
> This email and any files transmitted with it are confidential and
> intended solely for the use of the individual or entity to whom they
> are addressed. If you have received this email in error please notify
> the sender immediately.
>
> This footnote also confirms that this email message has been swept for
> the presence of computer viruses.
> **********************************************************************
>
>
> ==========================================================================
> ======
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ==========================================================================
> ======
**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the sender immediately.
This footnote also confirms that this email message has been swept for
the presence of computer viruses.
**********************************************************************
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
