RE: [FW1] Radius Server for AUTHORIZATION

Wed, 09 Aug 2000 01:19:55 -0700 


Martin,

I assume that the group is your 6000 users? If this is the case you will
need to create a user generic* and ensure radius authenication on enable on
your firewall object. Any user that is not defined in the fw1 user list is
passed to the radius server.

Hope this helps
Gary
                \\|//
                (O-O)
--------------oOO(_)OOo--------------------------------------------
Gary VARNAM, CCNA            Tel:0161-793-2975  
Data Communications Section  Fax:0161-794-5221
SALFORD City Council         Home Page: http://www.salford.gov.uk
                                     MailTo:[EMAIL PROTECTED]  
-------------------------------------------------------------------


-----Original Message-----
From: Adorno Martin [mailto:[EMAIL PROTECTED]]
Sent: 08 August 2000 21:56
To: '[EMAIL PROTECTED]'
Subject: [FW1] Radius Server for AUTHORIZATION



I Know that it is possible to AUTHENTICATE users through an external Radius
server. But, is it possible to AUTHORIZE users through an external Radius
server???

In other words, can Fw-1 understand users groups defined in a radius server?
If it is no possible, it means that I must define my 6000 users manually in
the firewall so as to have Internet services restriccions by user basis. I
know that with the LDAP solution it is possible, but I would like to use
Radius.

Any help will be appreciate.
Thanks!!!
Mart�n Adorno 


============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====
*******************************************************************************************************
Any opinions expressed in the email are those of the individual and not necessarily the
City Of Salford. This email and any files transmitted with it are confidential and
solely for the use of the intended recipient.
It may contain material protected by solicitor-client privilege. If you are not the
intended recipient or the person responsible for delivering to the intended recipient, 
be advised that you have received this email in error and that any use is strictly 
prohibited. If you have received this email in error please notify the IT manager by
telephone on +44 (0) 1617933906.
 
********************************************************************************************************



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Reply via email to