Re: VPN to NetScreen (100) firewall - can it support token devices?

From: Derek Nash (dnash@tiny.net)
Date: 05/14/02 

From: "Derek Nash" <dnash@tiny.net>
Date: Tue, 14 May 2002 09:16:41 -0500

The answer is yes it has built in support for Security Dynamics Technologies
SecureID. It also supports the use of a RADIUS or LDAP server for
authentication.

"Paul Adams" <paul.adams@thecheshire.WANTSNOSPAM.co.uk> wrote in message
news:f9bkdusk1hce41l5asc3pqbscfp5403duc@4ax.com...
> We are looking at getting a pair of NetScreen 100 firewalls to act as
> an HA pair on the outer perimeter of a DMZ bordering on the Internet.
>
> There are 5 or 6 of us in Tech Support that may get ADSL installed and
> an ADSL router (such as the D-Link DSL504) at home in order to connect
> with the office via the Internet.
>
> The current method we gain access to our LAN remotely is via a dial-in
> bridge which uses CLID to verify it is us dialling in - this bridge
> connects to a server which authenticates the user connection using a
> username, password and ActivCard token.
>
> This is the sort of level of security we would like to use for VPNs
> between the remote locations and the firewall pair - can we do this
> with NetScreen 100 firewalls?
>
> (We would have static IPs at home and use an ACL on the router at the
> office to simulate the "CLID" feature of our dial-in service.)
>
> Thanks for any info.
> Paul
> --
> Paul Adams
> Infrastructure & Security Analyst

Relevant Pages

  • RE: * * * C# Application and Database Security Model * * *
    ... I've noticded that your main concern here is to provide security ... If you're going to do authentication and authorization against windows ... ASP.NET 2.0 also provide a well encapsulated Membership and role manager ... Microsoft MSDN Online Support Lead ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: * * * C# Application and Database Security Model * * *
    ... I've noticded that your main concern here is to provide security ... If you're going to do authentication and authorization against windows ... authenticate user against custom security account database and authroize ... Microsoft MSDN Online Support Lead ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: WCF authentication and remote workstations
    ... As for the WCF communcation scenario in your context, would you provide some further information about the binding and security configuration of the service/endpoint. ... For example, are you using transport layer security, let the runtime forward the windows credential automatically for use message laye security(such as username authentication to authenticate the client)? ... For the first one(windows authentication that let the client automatically forward the client security context(the current logon user). ... We welcome your comments and suggestions about how we can improve the support we provide to you. ...
    (microsoft.public.dotnet.framework.webservices)
  • Re: openldap + kmail
    ... but I'm finding the use of openldap with kmail is still baffling me. ... If I choose Security: No and Authentication: Anonymous ... "LDAP server returned the error: ... If I return to Security: No and choose Authentication: Simple ...
    (Fedora)
  • Solaris Security Summary
    ... Administering Security on the Solaris OE ... Configuration control, facility management, and system ... Authentication: The ability to prove who you are. ...
    (comp.unix.solaris)
Quantcast