[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW1] SSL Authentication for Internal HTTP server
This worked after I bounced the Management console fwstop/fwstart.... Now
when I try to connect using the command "https://192.0.0.0:80/Myserver" I
get the following Netscape error:
"Netscape and this server cannot communicate securely because they have no
common encryption algorithm(s)"
I am using Netscape version 4.6 any suggestions.
Jeff Knecht
"Dameon Welch" <dwelch@hotmail.com>
Sent by: To: Jit_Singh@amat.com, fw-1-mailinglist@lists.us.checkpoint.com
owner-fw-1-mailinglist@lists.us.chec cc:
kpoint.com Subject: Re: [FW1] SSL Authentication for Internal HTTP server
10/13/99 09:06 PM
You probably need to do something like:
fw ca putkey Cressy
on the management console. I couldn't make this work until I did this.
-- PhoneBoy
>A document from the Joe's site (http://www2.checkpoint.com/~joe/) explains
>the
>SSL authentication. I am trying to configure this to access one of the
HTTP
>server behind the firewall. We have two Nokia 650 Firewall Modules managed
>by
>the Single Management Server running FW ver 4.0. At the step number three
>this
>document talks about Certifying the relationship between the Management
>server
>and Firewall module for the certificate authority by issuing the command:
>
>fw certify ssl <management server name> <firewall module name>
>
>When I do this, I get the following message
>
>"Certificate authority (sclamc) denies knowledge of Cressy.
>Check whether you have defined Cressy correctly.
>
>sclamc is the Management server name and Cressy is the Firewall Module. I
>can
>ping, telnet and ftp et all from Firewall module to Management server and
>vise-versa. So seems like that basic communication is OK.
>
>Please help in resolving this issue. I could not find any source to
resolve
>this
>on the Internet including phoneboy site and our reseller.
>
>Thanks in advance.
>
>Jit Singh
>
>
>
>
>
================================================================================
> To unsubscribe from this mailing list, please see the instructions
at
> http://www.checkpoint.com/services/mailing.html
>
================================================================================
>
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================