Re: VPN not in domain authenticating with IAS
From: Sarah (Sarah_at_TT.com)
Date: 05/17/04
- Next message: Robert L [MS-MVP]: "Re: RAS 2000"
- Previous message: Piotr Kania [Poland]: "RE: How to tell XP to use the VPN connection exclusively?"
- In reply to: Bill Grant: "Re: VPN not in domain authenticating with IAS"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 17 May 2004 12:08:45 +0100
Thanks Bill,
this is what I thought, but I wanted to double check and make sure I hadn't
missed anything.
Sarah
"Bill Grant" <not.available@online> wrote in message
news:uof0ystOEHA.3052@TK2MSFTNGP12.phx.gbl...
> Well the answer is yes and no! If you want to authenticate to Active
> Directory and use the AD remote access policy, the RRAS server must be a
> member of the AD RAS and IAS servers group. The DC on AD does the actual
> authentication (similar to RADIUS).
>
> If the RRAS server is not a member, the client will have to
authenticate
> to the
> local SAM database of the RRAS server.
>
> "Sarah" <Sarah@TT.com> wrote in message
> news:#K#M1HrOEHA.556@tk2msftngp13.phx.gbl...
> > I set up a test site and got a client to dial up and use L2TP to connect
> to
> > a VPN Server that connected to an IAS server that connected to a DC
> (Active
> > Directory) and authenticated the client machine.
> >
> > Question: Does the VPN server have to be a member of the IAS servers
> docain.
> > When i removed it from the domain, i could no longer authenticate. I get
> > error 792.
> >
> > Any help/advice appreciated.
> >
> > Thanks
> > Sarah
> >
> >
>
>
- Next message: Robert L [MS-MVP]: "Re: RAS 2000"
- Previous message: Piotr Kania [Poland]: "RE: How to tell XP to use the VPN connection exclusively?"
- In reply to: Bill Grant: "Re: VPN not in domain authenticating with IAS"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
