Re: Which firewalls have this functionality? External user authentication
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


comp.security.firewalls archive

Re: Which firewalls have this functionality? External user authentication

From: Alessandro Perilli <alessandro.perilli@gmail.com>
Date: Tue Feb 07 2006 - 14:17:39 CET



Hi RJ,



Check Point VPN-1 NG/NGX and Microsoft ISA Server 2004 have this


functionality out of the box:



- In Check Point VPN-1 are 3 available types of authentication (user,


session and client authentication) permitting to authenticate users by


a transparent connection, a client agent or a parallel connection (like


Watchguard does via port 4100).


There are 6 available database schemes (OS Password, Check Point


Password, SecurID, RADIUS, TACACS, LDAP).



Authentication with the first 5 schemes is free (included in every


standard license) while the last one, LDAP, is available just by paying


an additional price (in price lists is referred as SmartDirectory).



- In Microsoft ISA Server every rule can be enforced by authentication


by specifying a Windows local SAM group or a Active Directory domain


group. Multiple groups are supported as well.



HTH



Alessandro Perilli, CISSP, MVP


http://www.alessandroperilli.com



Blogging about IT Security on http://www.securityzero.com


Blogging about Virtualization on http://www.virtualization.info


Received on Tue Feb  7 20:59:28 2006