Re: Active Directory call for contractors VPNing into our network

When the users VPN in, the credentials will only give them the ability to connect via the VPN, and not any access to your network. When they attempt to access a network resource, they will then be prompted for credentials again.

I believe the easiest cure would be to have them attempt to access one of your servers (preferably the one with the application on) after VPNing in, and when prompted for credentials, enter the user account details for your network in the format DOMAIN\Username. Tick the remember password box, and they should then have no issues accessing this server.

The proper method (if possible) would be to establish a trust relationship between the two ADs, but this may not be feasible in your environment.

Hope that helps.

Chad Hooper
MCSE (NT,2000,2003)


"Chad" <memyselfandirene@xxxxxxxxxxx> wrote in message news:kqednbHFQP14_KDVnZ2dnUVZ_uCdnZ2d@xxxxxxxxxxxxxx
We have a .NET program that works fine for everyone that logs onto Windows using a Windows domain account. However there are some contractors that are signing onto Windows using their company's account ID that are getting a "server not found" error when attempting to perform the call our company's AD .



Though they are signing onto Windows using the contracting company's account credentials, they are later use VPN software to get into our network. The user who is having the problem does in fact has adomain account with my company.



When the user accesses other company resources, he is presented with a Windows dialog box where he has to each time enter his company credentials.



Is there a way to identify what the credentials are for my company rather than his? Can he also talk to our AD? If not, I guess I can move the call to a web service as long as I can identify his company account first.







.

Relevant Pages

  • Re: How do you wintrolls...
    ... the system will automatically log in with those credentials from then on. ... account credentials, exactly what files do you think he wants to access? ... When Vista asks you if a newly discovered network is 'Public' or 'Private', this is one of the things it is doing. ... I have not found any necessary functionality in the menu bar; as far as I can see the only the functions that are in the menu bar are the greybeard switch for the old-style status bar and, oddly, the 'Invert Selection' command- which strictly speaking can always by done manually. ...
    (comp.sys.mac.advocacy)
  • Re: Trusted SQL Connections & NT AUTHORITYNETWORK SERVICE
    ... SYSTEM account in terms of the credentials it uses on the network. ... hitting a SQL Server on the same machine as the web app. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Accessing security information from an authentication provider
    ... In the meantime it occured to me how to transmit the token to the ... If you only need a machine local account and no network credentials, ...
    (microsoft.public.platformsdk.security)
  • Re: Possible inside security breach
    ... By default "authenticated users" can add up to ten workstations to a domain which ... means that ANYONE that know a logon/password for a domain account can add a ... ipsec policy to use for network communications restricted to only domain ... > who connect via a VPN. ...
    (microsoft.public.win2000.security)
  • Cached Credentials out of sync with Domain
    ... ELC has a VPN that uses SecureID Tokens to auth into our ... The remote users login to a cached version ... connecting to our VPN are on our network, ... cached credentials aren't updated unless they do a CTRL- ...
    (microsoft.public.windowsxp.security_admin)