 | ||
 Extend the authentication timeout | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Search this Thread | Display Modes |
 2009-11-27 | |||
| |||
 Extend the authentication timeout We are having an issue to authenticate our remote users using SecureClient to vpn to our SecurePlatform R65 HFA 30 firewall. When a user tries to connect they get the error below. Checking network connectivity... Preparing connection... Connecting to gateway... Gateway not responding Connection failed This is because the RADIUS server behind the firewall is using time for extra authentication. The error message in the VPN log, says there is no respons from RADIUS. This is correct, because the RADIUS is busy also authenticating the user by other means, and will not answer before the final authentication is done. The question is, how do I extend the timeout values in the CP VPN. I have attemted to extend the au_connection_timeout value to increase the timeout. This did not work. I attemted the same with ike_negotiation_timeout with the same result. These values does not seem to have any effect even if i try to decrease the timeout values. Any suggestions on what I should do next?  |
| 2009-12-08 | |||
| |||
| Re: Extend the authentication timeout In order to modify Radius timeouts, you can use the following attributes: From the SmartCenter/CMA SmartDashboard got to 'Global Propertie' ==> 'SmartDashboard Customization' ==> Configure... ==> Firewall-1 ==> Authentication ==> RADIUS: -------------------------------------------------------------------- - radius_connect_timeout (connection timeout) - radius_retrant_timeout (timeout between retransmissions) - radius_retrant_num (number of retransmissions) -------------------------------------------------------------------- Hope it will help. |
|
| Thread Tools | Search this Thread |
| Display Modes | |
| |
Linear Mode
