Thread: Checkpoint VPN-1 Time dependancy Info Required
View Single Post
  #2 (permalink)  
Old 2007-03-06
RayPesek RayPesek is offline
Senior Member
  
Join Date: 2006-03-19
Location: Northern Ohio
Posts: 909
Rep Power: 3
RayPesek has an average reputation (10+)
Default Re: Checkpoint VPN-1 Time dependancy Info Required
There is a setting in the SmartCenter where you can change the "window" of allowed time differences. I think the default is one hour.

If the client is too far in the future, then their clock will be in the future as far as the certificate revocation list is concerned.

When you're using certs in any application, synced time is mandatory. If you use Symantec AntiVirus Corporate Edition v10, which uses certs to authenticate the management server to the client, you'll see messages in it if there is too much of a time difference and you'll be unable to manage the anti-virus on the clients.

Ray
Reply With Quote