SSL NE on Vista

[res002mg]

Hi all!
Did anyone tried SSL NE on Vista yet?
I am having problem with RDP client that comes with Vista.
I managed to make SSL NE authentication to the firewall to work, but any conection after shows up in firewall log in clear.
-ar

[tjmadden07]

I have been unsuccessful in getting Vista to work period. Would you mind sharing the steps taken to get SSL Network Extender to work with Vista or at least the version of firewall?

[rgsteele]

I'm also interested in getting SSL Network Extender working on Vista. I have made some headway with getting the ActiveX control installed and getting connected, but I can't get any network traffic to travel over the encrypted link. I'll share what I've found so far.

To get the ActiveX control installed, you need to disable UAC. There's a document on SecureKnowledge here:

https://secureknowledge.checkpoint.c....do?id=sk32557

There's a couple errors in this document though. First of all, where it says

Quote:

Double-click the policy 'User Account Control: Run all administrators in Admin Approval Mode' and set it to "Enabled".

you should actually set it to "Disabled". You will also need to reboot your computer after changing these settings.

Second, these steps will only work if you are using Vista Business or Ultimate. On either of the Home versions you need to edit the registry to change these settings. I've created two .reg files for this purpose.

DisableSecurity.reg:

Code:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000000
"EnableLUA"=dword:00000000

EnableSecurity.reg:

Code:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000002
"EnableLUA"=dword:00000001

If anyone has managed to get traffic going over the VPN connection let us know what you did.

[rgsteele]

The KB article has been updated. Apparently UAC can be disabled through the Control Panel. This should work on all versions of Vista.

https://secureknowledge.checkpoint.c....do?id=sk32557

[ilmaz]

Hi

Well, I tried everything which is mentioned in the SecureKnowledge however at the end I was receiving the following message:

"Can't update the routing table! Please try again."

As a freind of mine investigated, he found that the problem is with Vista since due to built-in security, it does not allow an application to be installed and configured using a web browser. Hence, we simply downloaded the SNX client manually and installed it. Now it's working fine.

Regards,