Isn't UserAuth only transparent authentication?
(ie you telnet directly to the target machine opposite
to non transparent where you have to first connect to the fw)
I had a similar problem, and found that I didn't put "Any" in
the user's source/dest address (or the actual source/dest address)
You can otherwise edit the properties of the UserAuth Action
and put "ignore user database" instead of "intersect with user db"
hope this helps.
Mike
Grzegorz Rymarski wrote:
>
> I set authentication scheme on S/Key for user "bob" and non tranparent
> authentication mode.
>
> My first Security Policy rule looks like that:
> AllUsers@any mail.server.com telnet User Auth
>
> but when I telnet on mail.server.com and eneter username and password I
> get
> User: bob
> SKEY CHALLENGE: 98 bob.
> Enter SKEY string: "My password"
> Access denied for user bob
> Why?
> With other authentication scheme (... Firewall-1 Password) its work
> good.
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
