CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. Come to CPUG CON 2008 EUROPE in Switzerland on September 8th - 9th!
    Two days full of technical content for Check Point administrators in the beautiful Swiss Alps!
    We already have sign-ups from twelve different countries!
2. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 7/14, 8/25, 10/6, 11/3, 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8.
3. Corrent S3500 SecureXL Turbocards For Sale - Last Six Remaining - Get Your Spares!
4. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > Authentication
Reload this Page Using SSL authentication with Netscape/Mozilla browsers
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2005-08-13
roadrunner roadrunner is offline
Senior Member
  
Join Date: 2005-08-12
Posts: 162
Rep Power: 3
roadrunner has an average reputation (10+)
Default Using SSL authentication with Netscape/Mozilla browsers
Using SSL authentication with Netscape/Mozilla browsers
In NG, if you use User or Client Auth with SSL, you will have problems if you use a certificate generated by Check Point's internal CA along with a Netscape/Mozilla browser. This is because the certificates Check Point generates are not entirely compatible with these browsers.

Check Point is aware of this problem and will fix it in a hotfix to NG FP3. Other browsers don't have the problem, though anything based on Mozilla (e.g. KMeleon, Galeon, Firebird) will also have the problem.

-- PhoneBoy - 30 Dec 2003


FAQForm
FAQs.Class: AuthenticationFAQs
OperatingSystem?:
FAQs.Version: NG
Reply With Quote
  #2 (permalink)  
Old 2006-10-26
sqbany sqbany is offline
Junior Member
  
Join Date: 2006-10-26
Posts: 1
Rep Power: 0
sqbany has an average reputation (10+)
Default Re: Using SSL authentication with Netscape/Mozilla browsers
So if there is a problem with interna_ca certificate maybe an external certificate will work? Has anyone tried this? I have had NG FP3 so far with HFA_327 and internal certificate doesn't work. I used a solution no #sk13621 in which they suggest using certificate with ServerAuthentication Extended Key Usage but with no results. I even tried to use external certificate generated via openSSL but I wasn't succesful. I guess that migration to the recent version of FW/VPN-1 will solve this problem but for this moment I need some temporary solution. Thanks for any advices.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -7. The time now is 17:32.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0