Re: IAS Help

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Scott Lowe (me_at_privacy.net)
Date: 12/31/04

  • Next message: Steve Riley [MSFT]: "Re: VPN Login ok, then nothing" 
    Date: Fri, 31 Dec 2004 15:50:39 -0500

    On 2004-12-28 18:13:03 -0500, "=?Utf-8?B?TWlrZSBBZGFtcw==?="
    <MikeAdams@discussions.microsoft.com> said:

    > I need to use be able to restrict VPN Clients to a single IP address.
    > User Bob attaches to our network via our NAS (Cisco VPN 3000) and the
    > Cisco VPN client 4.0.5. The group on the Cisco is set to use RADIUS.
    > Our RADIUS server is IAS on windows 2003. I need to restrict Bob to
    > talk only to 10.10.100.40. Is this possible? If so How?

    Your best bet is to apply the filters on the VPN 3000 concentrator;
    AFAIK, the filters in IAS only work if the VPN endpoint is an RRAS
    server.

    HTH. 

    -- 
Scott Lowe
  • Next message: Steve Riley [MSFT]: "Re: VPN Login ok, then nothing"

    Relevant Pages

    • Re: VPN3005 IPSEC Access Control
      ... do you have an IAS RADIUS server in your forest? ... -- create an AD group called VPN Users ...
      (comp.dcom.sys.cisco)
    • IAS and SonicWall
      ... RADIUS server is for Dialup access. ... VPN is for access VIA ... internet connection. ... IAS will only handle authentication ...
      (microsoft.public.win2000.security)
    • Re: Vasco Radius
      ... you can use a third party RADIUS server for authenticating VPN users ... invoming VPN connections in the Using RADIUS Authentication for ISA Server ... > or use Configure VPN Client Access on the isa 2004 server with IAS on the ...
      (microsoft.public.isa.vpn)
    • Re: VPN 3005 to IAS authentication failure...
      ... Call it something like "VPN Users" or similar. ... install IAS using the Add/Remove Programs icon in Control Panel. ... we can now configure the PIX firewall as a RADIUS client. ... Any user that should be allowed to authenticate on a VPN connection will ...
      (comp.dcom.sys.cisco)
    • Re: How do I deal with remote non domain PCs
      ... member file server, what would you use to authenticate? ... environment/Certificates or is IAS enough? ... When access clients attempt to connect through VPN PPTP connections and the ... network resources -- and IAS does not perform authentication when VPN users ...
      (microsoft.public.internet.radius)