What you are speaking about is Hybrid Authentication. With IKE, the only
supported auth methods with 4.0 are Certificate based, and pre-shared.
In version 4.1 hybrid mode auth is brought forward. You should be able
to use RADIUS with IKE&SEcuremote on 4.1 (CP 2000). My experience is
somewhat limited, but this was one of the big reasons to move to 4.1.
Management of several thousand pre-shareds can be tough.
Thomas Poole
-----Original Message-----
From: Gelson Dias Santos [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 30, 2000 3:13 PM
To: [EMAIL PROTECTED]
Subject: [FW1] SecuRemote + ISAKMP + Radius?
My SecuRemote users authenticate through ISAKMP pre-shared
secrets,
i.e., local passwords defined on the ISKMP Properties of the user. I
would
like to authenticate it on a Radius server. Is that possible? Note I
known
how to authenticate _the user_ on Radius; what i'm asking is how to
authenticate the user encryption used by SecuRemote. If I could do that,
my
users would use the same login/password for remote dialup and
securemote,
And I would not need to add all of them locally on the firewall.
Thanks,
Gelson
========================================================================
========
To unsubscribe from this mailing list, please see the instructions
at
http://www.checkpoint.com/services/mailing.html
========================================================================
========
smime.p7s
