IPSEC Failing (Secure Server)
From: Aaron (Aaron_at_discussions.microsoft.com)
Date: 11/17/04
- Next message: Dennis Grinberg: "Can not access local resources over VPN"
- Previous message: Steven L Umbach: "Re: Routing and Remote Access is denied"
- Next in thread: Robert L [MS-MVP]: "Re: IPSEC Failing (Secure Server)"
- Reply: Robert L [MS-MVP]: "Re: IPSEC Failing (Secure Server)"
- Reply: Steven L Umbach: "Re: IPSEC Failing (Secure Server)"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 17 Nov 2004 13:28:01 -0800
Server A has local policy configured as Secure Server(Require Security).
Client B has local policy configured as Client(Respond Only). Both A and B
are members of the same W2K3 AD domain. Event log error on Server A: IKE
security ssociation failed: Key Exchange Mode (Main Mode). Further down it
says, Failure Point: Me, Failure Reason: Failed to authenticate using
kerberos.
Doing some trouble shooting, I found that if I changed the policy on Server
A to Server(Request Security) the communication did occur and was
encapsulated (verified using NetMon). I also could get this to work if,
leaving the policy on Server A on Secure Server, I changed the policy on
Client B to Server(Request Security).
- Next message: Dennis Grinberg: "Can not access local resources over VPN"
- Previous message: Steven L Umbach: "Re: Routing and Remote Access is denied"
- Next in thread: Robert L [MS-MVP]: "Re: IPSEC Failing (Secure Server)"
- Reply: Robert L [MS-MVP]: "Re: IPSEC Failing (Secure Server)"
- Reply: Steven L Umbach: "Re: IPSEC Failing (Secure Server)"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
