authenticate | Booches.nl

Troubleshooting: FortiGate and RADIUS

René Jorissen on December 12, 2025 • 0 Comments • Tags: #authenticate #fnbamd #fortigate #radius

I recently encountered a strange case where RADIUS authentication on a FortiGate cluster was failing on the secondary node. The cluster uses multiple VDOMs configured in a vcluster, and each FortiGate has its own out-of-band management IP. Authentication had been working fine previously. On the secondary FortiGate, I enabled debugging to see if authentication requests … Read More

Firewalling, Security

ISA Server 2006 array – renew certificate

René Jorissen on May 23, 2011 • 0 Comments • Tags: #2006 #array #authenticate #certificate #channel #configuration #encrypted #isa #renew #server #ssl #storage

When configuring a Microsoft ISA Server 2006 array you have two options for authentication and communication between the Microsoft ISA 2006 Configuration Storage Server and the array members. Windows Authentication: Choose this option if ISA server and the Configuration Storage server are in the same domain, or in different domains with a trust relationship between … Read More

Security

RSA AM 7.1SP3 Token Delivery

René Jorissen on April 28, 2010 • 0 Comments • Tags: #agent #authenticate #automatically #deliver #delivery #on-demand #rsa #token

Using two-factor authentication is common when publishing remote services to the internet with components like Citrix NetScaler or Juniper SA appliances. RSA is a well-known provider of two-factor authentication mechanism. Beginning with RSA Authentication Manager 7.1 people have the ability to use the On-Demand feature. This feature enables the delivery of token codes via SMS … Read More

Proxy

eSafe Proxy with NTLM v2.0

René Jorissen on March 8, 2010 • 1 Comment • Tags: #2008 #7 #authenticate #esafe #lan #manager #ntlm #ntlmv2 #proxy #r2

Today I am playing with eSafe 8 operating in eSafe Proxy with NTLM authentication mode. Configuring eSafe Proxy with NTLM authentication is very straightforward and not difficult. The authentication settings are configuring using the eSafe Appliance Manager web interface, like shown below. I did some testing with multiple browsers and single sign-on with NTLM authentication … Read More

IPSec / SSL VPN, Security

Redundant DMVPN network

René Jorissen on August 20, 2009 • 0 Comments • Tags: #authenticate #cloud #dmvpn #dual #dynamic #eigrp #hub #isakmp #multicast #multipoint #network-id #nhrp #redundant #resilient #single #spoke #vpn

Today I looked at the configuration DMVPN (Dynamic Multipoint VPN). A Dynamic Multipoint Virtual Private Network is an enhancement of the virtual private network (VPN) configuration process of Cisco IOS-based routers. DMVPN prevents the need for pre-configured (static) IPsec peers in crypto-map configurations and ISAKMP peer statements. This feature of Cisco IOS allows greater scalability … Read More

Security

Cisco 877W wireless authentication failed

René Jorissen on January 6, 2009 • 1 Comment • Tags: #dot11-7-cckm_auth_failed #aes #authenticate #broadcast-key #cckm #change #failed #interval

At home I have a Cisco 877W router. I use the wireless functionality to connect the different laptops to the networks. After upgrading the software from the router I have problems with the wireless authentication. The router is working perfectly, but after some time the laptops are able to connect to the wireless network. Vista … Read More