 | ||
 RADIUS for smart dashboard problem | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2006-08-31 | |||
| |||
 RADIUS for smart dashboard problem Hi, I want my admins to logon to SmartDashboard using our Radius server. I have configured a test user (AdminAuth=RADIUS) and selected the RADIUS server object . The RADIUS server object has Host=Win2K box running Microsoft Internet Authenticatiion Server (RADIUS); Service=RADIUS(udp); Shared Secret (abc123); Version=RADIUS v.1.0 Protocol=PAP. When I try to logon from my desk to the management center via SmartDashboard using this test user name, nothing happens and I get - "Authentication to Server X.X.X.X Failed" When I try using my normal FW-1 Adminsitrator account, its fine. My rules allow the Mgmt Center wide open access to the Radius server, so it's not a connectivity or rule issue. ANy clues? -k  |
| 2006-08-31 | |||
| |||
| Re: RADIUS for smart dashboard problem Any logs on the RADIUS server giving any indication of what's happening? e.g. if it's even trying to auth, or if something else is going on. |
| 2006-08-31 | |||
| |||
| Re: RADIUS for smart dashboard problem Hi Northlandboy, The log files directory on the Win2K server are empty..even though the Internet Authentication Server is set to log Rejected+Successful authentication requests... Question- Is my Radius client the Managment center IP or the Firewall IP..? I suspect the Mgmt Center IP becuse that is where I will be authenticating SmartDashboard Admin users from..(but i have the FW ips in there also) The IAS is running normally.. with the FW EMC IP defined. Ports: 1812,1645/1813,1646 Radius Standard Shared Secret=defined Message Authenticator=OFF Active Directory is running normally, coz I can login into Win2K using the test user I created in AD. It is a member of the domain and Under Dial-In Tab, it is allowed Access. |
| 2006-08-31 | |||
| |||
| Re: RADIUS for smart dashboard problem In this case, it would be the SmartCenter server IP. |
| 2006-08-31 | |||
| |||
| Re: RADIUS for smart dashboard problem Northlandboy, It is fixed now. The problem, at least as far as I can tell, is that Version in the RADIUS object was set to version 1.0; which did not work. When I changed it to Version 2.0, now it works, and the user authenticates no problem. I am not sure why changing the version in the RADIUS object fixed this. I also see logs now in the \WIN\SYSTEM32\LOGS\ directory preceeding with INxxxxxxxxx.log and it shows the RADIUS authentications. Thanks for your assistance Northlandboy! cheers ~mike |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
