|Applies To||Check Point Firewall-1|
Sun Solaris 2.6
RSA ACE/Agent installed on the firewall
|Issue||Firewall authentication causes "Node verification failed"|
SecurID authentication using sdshell on the firewall works
Error: "Node verification failed" in ACE/Server activity monitor when authenticating using firewall
|Cause||Agent installation creates ace/data directory on the firewall. The node secret is created in the ace/data by authentication using sdshell. Firewall authentication needs a securid file in var/ace.|
|Resolution||A symbolic link should be created between var/ace and ace/data.|
ln -s <PATH>ace/data /var/ace
Workaround: Copy the securid file from ace/data to var/ace directory. But in this case securid file must be updated in var/ace directory each time the file is newly created in ace/data.
For additional information on Check Point configuration See also the Firewall Implemetation Guides.
|Legacy Article ID||a2247|