CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Results 1 to 2 of 2

Thread: Using SSL with client auth

  1. #1
    Join Date
    2006-02-17
    Posts
    5
    Rep Power
    0

    Default Using SSL with client auth

    Another question :-)

    I know that I have to edit that line :

    900 fwssd in.ahclientd wait 900

    But I can't remember how I have to tell the firewall to use the "defaultcert" with that port 900.

    Thanks.

    **********************************
    That's ok, I find it.
    **********************************
    Last edited by greg06; 2006-03-03 at 04:12.

  2. #2
    Join Date
    2006-03-16
    Posts
    2
    Rep Power
    0

    Default Re: Using SSL with client auth

    In case you haven't found it, this should work for client authentication.

    If you want to encrypt between the client and the firewall:
    900 fwssd in.ahclientd wait 900 ec:defultcert

    If you want encrypt between the client and the firewall and the destination server:
    900 fwssd in.ahclientd wait 900 eb:defultcert

Similar Threads

  1. Number of auth. attempts with Client Auth
    By netgeo in forum Authentication
    Replies: 1
    Last Post: 2008-12-04, 18:04
  2. No pop-up using Client Auth
    By aallsopp in forum Authentication
    Replies: 3
    Last Post: 2006-03-13, 15:32
  3. Client Auth + SecurId
    By greg06 in forum Authentication
    Replies: 1
    Last Post: 2006-03-04, 07:23
  4. No Client Auth Rules Available
    By Barry J. Stiefel in forum Authentication
    Replies: 1
    Last Post: 2005-08-18, 11:34
  5. Replies: 0
    Last Post: 2005-08-14, 11:58

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •