Greetings,
I've been lurking for a while and checked quite a few sites(phoneboy
included), but haven't been able to get response to this question:
I understand the difference between User Authenticate and Client Encrypt as
far as authentications go: User Authenticate uses the Authentication tab in
the User properties (Radius/Firewall-1/SecureID) and the Client Encrypt uses
the Authentication tab under Client Encryption method. I have IKE defined
as an encryption method, define a pre-shared secret, and use Client Encrypt
as an action in my ruleset. Upon attempting a connection to my Encryption
Domain I am prompted for a password which is the pre-shared secret from
above. At this point my connection is encrypted and I can access anything
behind the FW. However I can't pass off this sort of authentication to a
RADIUS server, right? I can only pass off User Authentication, which in
turn forces me to use User Authenticate as an action in my ruleset. Does
this leave my connection un-encrypted?
Feel free to point out where my reasoning is wrong. What I am trying to
achieve is an encrypted connection with authentication passing through a
Radius server to an NT box (pretty common setup I presume)...
Thanks,
-Gary-
Gary Portnoy
Network Administrator
[EMAIL PROTECTED]
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
