[FW1] HELP! Problem configuring LDAP w/ Innosoft Directory Server

[Kerry Baker <k.baker@cantva.canterbury.ac.nz>]

Hi all,
Has anyone successfully configured LDAP on FW-1 using an Innosoft LDAP
server?

I am trying to configure FW-1 v4 with SP3 to use LDAP for authentication.
I have successfully got it to work using the supplied Netscape Directory
Server with the help of the whitepaper at http://www2.checkpoint.com/~joe/
But now I want to get it to work using our corporate LDAP server -- Innosoft
Distributed Directory Server (IDDS) v.4.4.2.
The problem is that I can't fetch any branches.

When I configure the LDAP Account Unit in the Security Policy and I click on
'Fetch' I get the error "LDAP server does not have information on branches."
When I configure an Account Unit with the Account Management Client and
click 'Fetch' I get "Sorry, no branches could be retrieve from LDAP server."
I think both these messages are for the same problem as in the LDAP log I am
getting the error "Undefined attribute type".
Debugging log shows: "attr_normalize: invalid character in attribute type
name"

Schema checking is off.

Does anyone have any ideas?

Thanks in advance.

Regards,
Kerry.



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================