Using OpenSwan to connect to CheckPoint with Hybrid Authentication
emsi at ipartners.pl
Wed Oct 5 11:08:01 CEST 2005
First of all my apologies for cross-posting but I hope that the subject of
this post might be interesting for users and developers.
I'd like to announce the OpenSClient project which purpose is to enable
CheckPoint Hybrid Authentication mode support in OpenSwan allowing for
Username/Password (or two factor, like SecureID) authenticated VPNs among
CheckPoint and Linux. Please see following page for more details:
The project is based upon Criss Poon findings and OpenSwan patch (see
which has been ported to OpenSwan 2.4 and a simple HOWTO explaining how to
use it and configure to connect.
It's far from beeing perfect so any suggestions are welcome. There are
also many issues to address like the reauthentication problem and so on
so don't expect it to be ultimate solution ;)
Another question is whether it's possible to implement this functionality
(this way or another) in mainstream OpenSwan?
Internet Security Specialist, GTS - Internet Partners
More information about the Dev