 | ||
 HELP with configuring SSH and LDAP on SLPAT | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2008-07-17 | |||
| |||
 HELP with configuring SSH and LDAP on SLPAT Hi guys, Could some one please tell me how I can configure SSH and LDAP on SPLAT (NGX 6.0 to be more specific) ? Basically ,from a Unix host, I want to be able to SSH to a SPLAT management server and have this server refer my authentication request to an Opensource LDAP server for verification I could not find much useful material from the Check Point web site on SSH Any help would be greatly appreciated Thanks  |
| 2008-07-18 | |||
| |||
| Re: HELP with configuring SSH and LDAP on SLPAT SPLAT is essentially RHEL 3.0 so if you can do this and Check Point hven't stripped this out as part of there hardening process then should be the same as for normal RHEL 3.0. I know that for RADIUS Auth to be enabled on a SPLAT Server then a SecurePlatform Pro License is needed. If you want this then you may need to consider using RHEL rather then SPLAT for the Servers, obviously though RHEL is not free. |
| 2008-07-20 | |||
| |||
| Re: HELP with configuring SSH and LDAP on SLPAT Thanks much for the replies so far, but I need more specific details There are two steps, if you like: 1/ how to configure SSH on SPLAT so that it does authentication using its own local account database, and 2/ how to configure SSH on SPLAT so that it does authentication by referring to an OpenLDAP server Please be as detailed and specific as possible - any reference material would be much appreciated Thanks |
| 2008-07-21 | |||
| |||
| Re: HELP with configuring SSH and LDAP on SLPAT You do not need to do anything to get SSH working on SPLAT, as it is preconfigured and works out of the box. Straight after completing the initial install after a reboot you can SSH to a SPLAT on the IP you configured. There is no additional configuration. I am guessing from this that you haven't even tried to SSH in with a client like putty at all. LDAP Authentication In Linux | HowtoForge - Linux Howtos and Tutorials explains how to configure open ldap client side. You will just need to scroll down to Client side config. This is just a generic LDAP howto doc but if the files are there and the neccessary links then this should be how it is done. As I said previously I am unsure if the ability to do this is in SPLAT as Check Point make no mention of this and you may need to use full on Red Hat Enterprise Linux to get LDAP User Authentication. If this isn't clear enough then Google "RHEL LDAP" and should find plenty of reference. However please try and understand that although SPLAT is RHEL based then Check Point do strip and remove a lot of what Check Point deem unneccessary. This is a decision made be Check Point so if it is a deal breaker then I suggest that you get you Check Point reseller to log as a Feature Enhancement Request, and if they get enough of it then it may appear in a future version of SPLAT. Check Point only mention local auth and RADIUS Authentication if using SPLAT Pro which is chargeable. This is why you won't find anything on the Check Point site about configuring LDAP Auth with SPLAT. |
| 2008-07-22 | |||
| |||
| Re: HELP with configuring SSH and LDAP on SLPAT You can only use RADIUS authentication on SPLAT Pro, with extra licensing. You will need to define a RADIUS group. Check details on sk32612 Valeri Loukine CCMA-0019 |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
