Re: Provide a pool ip from IAS to Radius Clients
anonymous_at_discussions.microsoft.com
Date: 10/13/04
- Next message: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Previous message: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- In reply to: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Next in thread: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Reply: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 13 Oct 2004 13:02:29 -0700
It's exactly this, my radius client has a static Ip and
it's working well. I need the folow:
I have a NAS (radius client) that connect with my radius
server and I need to provide to it some attributes and,
one of them, is the ip address, I'd like that my raduis
server would be able to get this ip from a pool to allow
more than one connection simultaneous. My question is if
the radius server works integrated with RRAs and if it
could get the ip from the pool set in the RRAs allowing
more than one connection simultaneos and without the
necessity of set the ip on user profile properties
individualy? Is it possible? If no, is there another way
to do that?
thanks.
>-----Original Message-----
>To the Remote Access client (not the radius Client)
>It's highly recommended that the Radius client always
have the same IP. One
>way to do it is through Static IP
>
>--
> =============================================
> This posting is provided "AS IS" with no warranties,
and confers no
>rights.
> =============================================
>
><anonymous@discussions.microsoft.com> wrote in message
>news:004b01c4b14d$fd72bdd0$3a01280a@phx.gbl...
>> So, what's the goal of the field SERVER MUST SUPPLY AN
IP
>> ADDRESS on IP tab of Remote Access Policies' profile?
>>
>> thanks;
>>
>>>-----Original Message-----
>>>IAS doesn't provide clients with IP Addresses, "Radius
>> Clients" are
>>>infrastructure devices or RRAS. These should have a
>> static IP assigned to
>>>them by the network administrator
>>>Now if you have a client connecting TO this client (RAS
>> Client or Wireless
>>>client connecting TO your client then you can assign
>> give that client a
>>>specific IP address. It would be the job of the NAS to
>> enforce this)
>>>To send back an IP address when a specific user
connects
>> to your NAS, simply
>>>add that IP in AD. (Open AD users and computers, find
>> your user, Edit
>>>properties, Dial-In tab, select "Assign static IP
>> Address" and fill the
>>>address)
>>>Alternatively, you can do this also from the IAS Remote
>> Access policy in the
>>>profile set it under IP Address Assignment. (You may
>> also do it through the
>>>advanced tab)
>>>
>>>HTH
>>>
>>>
>>>--
>>> =============================================
>>> This posting is provided "AS IS" with no warranties,
>> and confers no
>>>rights.
>>> =============================================
>>>
>>>"Luyper Silveira" <luyper@sotreq.com.br> wrote in
>> message
>>>news:052001c4b135$63f23fe0$a401280a@phx.gbl...
>>>> Dear,
>>>>
>>>> I have a IAS server (Windows 2003 server) installed
in
>> my
>>>> company and a have an external radius client
connecting
>>>> with it. I need to provide to the radius client some
>>>> attributes and, one of them, is the ip address. My
>>>> question is, Am I able to provide just one ip
>> address? I
>>>> tried to do it to get an ip from the RRAs installed
in
>>>> the same server but I receive the message Error:
>>>> 691:Access was denied because the username and/or
>>>> password was invalid on the domain.
>>>>
>>>> I made the following sets:
>>>>
>>>> 1 - I have an RRAs service with a pool address
>> installed
>>>> and working well in the same server that is running
>> IAS.
>>>> 2 - I added the radius client.
>>>> 3 - I created a Connection Request Policie and I
added
>>>> the attribute Framed-IP-Address with the value
>>>> 255.255.255.254 (beside the other atributes needes)to
>> get
>>>> an ip from server.
>>>> 4 - I created a Remote Access Policie and, in the
>> Profile
>>>> properties' IP tab, when I choose the option Assign a
>>>> static IP address (and define an IP static),
everything
>>>> works well and I'm able to establish the connection,
>> but,
>>>> when I choose the option Server must supply an ip
>>>> address, I'm not able to establish the connection and
>> the
>>>> message above is displayed.
>>>>
>>>> When I look at the IAS log, everything seems Ok, see
>>>> below:
>>>> LINE1:
>>>>
>>
192.168.15.1,luyper@sotreq.net,10/13/2004,11:47:16,IAS,U19
>>>>
>>
DCMTZA,6,2,4,192.168.15.1,61,0,7,1,30,2121,31,2138657722,7
>>>> 7,50666 31200
>>>> V.90,5,5,4108,192.168.15.1,4116,0,4128,Embratel
Client
>>>> Radius,4155,1,25,311 1 172.16.1.29 10/08/2004
15:35:15
>>>> 80,4130,sotreq.net/98Matriz/Informatica/Luyper
>>>> Silveira,4127,1,4129,SOTREQ\luyper,4136,1,4142,0
>>>> LINE2:
>>>>
>>
192.168.15.1,luyper@sotreq.net,10/13/2004,11:47:16,IAS,U19
>>>> DCMTZA,25,311 1 172.16.1.29 10/08/2004 15:35:15
>>>> 80,4130,sotreq.net/98Matriz/Informatica/Luyper
>>>>
>>
Silveira,27,36000,6,2,28,18000,7,1,8,255.255.255.254,4108,
>>>> 192.168.15.1,4116,0,4128,Embratel Client
>>>> Radius,4155,1,4154,Embratel Connection
>>>>
>>
Request,8,255.255.255.254,7,1,28,300,6,2,27,600,4129,SOTRE
>>>> Q\luyper,4127,1,4149,Embratel Remote
>> Access,4136,2,4142,0
>>>>
>>>> My question is: Can I provide an Ip to a Radius
Client
>>>> from IAS using an Ip address from a RRAs's pool?
>>>>
>>>> thanks.
>>>>
>>>
>>>
>>>.
>>>
>
>
>.
>
- Next message: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Previous message: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- In reply to: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Next in thread: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Reply: Sam Salhi [MSFT]: "Re: Provide a pool ip from IAS to Radius Clients"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
