000021646 - Check Point Firewall-1 integration with ACE/Server RADIUS. Not communicating.

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021646
Applies ToRSA ACE/Server
Check Point Firewall-1
IssueGet Check Point Firewall-1 to authenticate to ACE/Server
Authentication gets to the ACE/Server, but does not get sent back to the client.
ResolutionCheck Point defaults to using port 1812 for RADIUS authentications. A snoop shows that the destination port to the RADIUS server is 1812. ACE/Server by default uses port 1645 for RADIUS. The firewall or the ACE/Server must be changed to show what the other is using for RADIUS communications. To change the port number that the ACE/Server uses for RADIUS, run 'sdsetup -config' and you will be prompted for the port number to use for RADIUS. This change will also have to be made in the services file also.
Legacy Article ID1.0.604753.2281775