000021646 - Check Point Firewall-1 integration with ACE/Server RADIUS. Not communicating.

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021646
Applies ToRSA ACE/Server
Check Point Firewall-1
RSA ACE/Server RADIUS
IssueGet Check Point Firewall-1 to authenticate to ACE/Server
Authentication gets to the ACE/Server, but does not get sent back to the client.
ResolutionCheck Point defaults to using port 1812 for RADIUS authentications. A snoop shows that the destination port to the RADIUS server is 1812. ACE/Server by default uses port 1645 for RADIUS. The firewall or the ACE/Server must be changed to show what the other is using for RADIUS communications. To change the port number that the ACE/Server uses for RADIUS, run 'sdsetup -config' and you will be prompted for the port number to use for RADIUS. This change will also have to be made in the services file also.
Legacy Article ID1.0.604753.2281775

Attachments

    Outcomes