Re: VPN client are prompted for username/password
- From: "Kevin Longley" <kwlongley@xxxxxxxxxxxxxx>
- Date: Fri, 17 Mar 2006 18:31:05 -0500
You could specify, within internet explorer-connections-dialup and
virtual..., the user logon info and the proxy server info.
"Rob Pijpers" <RobPijpers@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:1A70A565-B4F5-4A96-A83D-3B5C96844C0E@xxxxxxxxxxxxxxxx
Change the rule from All users to Authenticated users gets the users
prompted
for username/password again.
So something else is wrong here.
The users and clients are member of the same domain as the ISA servers
belong to.
"ZVR" wrote:
Phillip is entirely correct, however you could add "Authenticated Users"
to
the rule instead of "All Users", in which case users authenticated by any
entity (ISA included) will be allowed access - so you will be able to
track
who uses what.
Virgil
"Phillip Windell" <@.> wrote in message
news:OvAX4gUSGHA.6084@xxxxxxxxxxxxxxxxxxxxxxx
Unless the users machine's they are sitting at are Members of the
Domain,
and the users log in with Domain Accounts,...this is the way it is
supposed
to behave.
The credentials they use to establish the VPN connection do only
that,..they
establish the VPN connection,...that does not "log them onto the
Domain".
At our place the Users are using their work laptops that are already
members
of the domain and the users are logging into the laptops with thier
"cached"
domain account. They can use any valid credentials to establish the
VPN,..but the actual domain authentication goes by their cached domain
account,...so they don't get the prompt. Whatever credentials they
used
to
established the VPN link with become irrelevant after the link is
established.
--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
"Rob Pijpers" <RobPijpers@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:C5B66BFC-CE0D-4DF2-BE7F-D0B34AE63F27@xxxxxxxxxxxxxxxx
We have the following situation, VPN users connect to an ISA 2004 SEare
and
routed to the internal network, this works fine. RSA is used in theVPN
authentication process and this firewall handles only VPN traffic. If
the
users want to go to the internet they connect to an ISA 2004 EEinternet.
cluster
(2
nodes). When they do they are prompted for username/password.
Regarding the username/password entered they can't connect to the
The rule allowing access to internet permits users of an AD group toto
get
the internet, this works fine for the client on the internal network.buildin
The only way to get the VPN users to the internet is to add the ISA
All users group to the rule. The disadvantage is that all users get
unauthenticated to the internet.
So what is going wrong here?
.
- References:
- Re: VPN client are prompted for username/password
- From: ZVR
- Re: VPN client are prompted for username/password
- From: Rob Pijpers
- Re: VPN client are prompted for username/password
- Prev by Date: Upstream chaining credentials are invalid.?
- Next by Date: Re: Need to find out the IP of someone trying to hack a server
- Previous by thread: Re: VPN client are prompted for username/password
- Next by thread: Re: "502 Proxy Error. The HTTP request includes a non-supported header
- Index(es):
Relevant Pages
|
