Firewall Wizards mailing list archives

RE: how prevelant

From: "Melson, Paul" <PMelson () sequoianet com>
Date: Tue, 12 Oct 2004 14:10:43 -0400

-----Original Message-----
how common is it for a company to have it's NT domain and 
novell athentication pass openly across the internet, and 
have this be the requirement to access VPN tunnel rights from 
outside into the company?


Not at all.  I can't think of a current or even recent firewall/VPN
product that requires this type of configuration.  Every product I am
familiar with has some way of handing off domain/directory
authentication via RADIUS, LDAP, or whatever so that user authentication
data is encrypted and handled as part of the tunnel negotiation.  To do
what you describe undermines the primary advantage of VPN client access.

PaulM



 
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

how prevelant R. DuFresne (Oct 11)
- Re: how prevelant Paul D. Robertson (Oct 11)
  - Re: how prevelant Kevin (Oct 12)
- Re: how prevelant Jason Lewis (Oct 11)
  - Re: how prevelant Kevin Sheldrake (Oct 12)
- Re: how prevelant ArkanoiD (Oct 12)
- <Possible follow-ups>
- Re: how prevelant Brian Ford (Oct 12)
- RE: how prevelant Melson, Paul (Oct 12)