Showing results for 
Show  only  | Search instead for 
Did you mean: 

MFE 8.3.x Active Passport with multi Authenticators

Hi Community,

I have McAfee Firewall Enterprise 8.3.1 (or 8.3.2).

I use Active Passport with iPlanet (LDAP).
Users before HTTP access, have to put iPlanet credentials in pop-up window in Web Browser.
After this, they have to HTTP access for some time.
This is working OK.

Now I've added another Authenticator (for example Active Directory - based on LDAP not MLC) and want to use both of them simultanously for Active Passport.
I've choose "Default authenticator" on Passport page. (see attached screen-shoot)


I've tried to auth users from both authenticators, but works only with those choosen as "Default authenticator".

Question: Can I use both Passport Authenticators simultanously?

I've found on help page below info:

"Other authenticators selected in the Authenticators to establish Passport credentials list can be used to authenticate a connection and acquire an Active Passport."

Please answer how to config Active Passport with more than one Active Authenticator.

Best regards
Krzysztof Anzorge

1 Reply
Level 14
Report Inappropriate Content
Message 2 of 2

Re: MFE 8.3.x Active Passport with multi Authenticators

This is from page 103 of the 8.3.2 Product Guide.  I knew how to find it by searching for the word 'switch', since I've had to send this to other customers as well:

Switching authentication methods during a logon session

The firewall allows you to use multiple authentication methods for a given access control rule (for

example, users might use RADIUS or Password for Telnet authentication). When logging on, a user can

change to another authentication method by typing :authenticator after the user name.

That's the name of the authenticator you created (not the word 'authenticator').  So for you a user could type 'swadmin:testowa' as their username and then enter the password for the testowa authenticator instead of the password for the default one, ADMOJE.

I'll paste this into the SR you just filed also and you can let them know that this works so we can then close out your SR.

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community