[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW1] SSL Authentication for Internal HTTP server
You probably need to do something like:
fw ca putkey Cressy
on the management console. I couldn't make this work until I did this.
-- PhoneBoy
>A document from the Joe's site (http://www2.checkpoint.com/~joe/) explains
>the
>SSL authentication. I am trying to configure this to access one of the HTTP
>server behind the firewall. We have two Nokia 650 Firewall Modules managed
>by
>the Single Management Server running FW ver 4.0. At the step number three
>this
>document talks about Certifying the relationship between the Management
>server
>and Firewall module for the certificate authority by issuing the command:
>
>fw certify ssl <management server name> <firewall module name>
>
>When I do this, I get the following message
>
>"Certificate authority (sclamc) denies knowledge of Cressy.
>Check whether you have defined Cressy correctly.
>
>sclamc is the Management server name and Cressy is the Firewall Module. I
>can
>ping, telnet and ftp et all from Firewall module to Management server and
>vise-versa. So seems like that basic communication is OK.
>
>Please help in resolving this issue. I could not find any source to resolve
>this
>on the Internet including phoneboy site and our reseller.
>
>Thanks in advance.
>
>Jit Singh
>
>
>
>
>================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
>================================================================================
>
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================