Re: Remote accessing file shares problem
- From: v-xuwen@xxxxxxxxxxxxxxxxxxxx (Vincent Xu [MSFT])
- Date: Tue, 11 Jul 2006 07:10:19 GMT
Hi,
I agree with you we'd better narrow down this issue.
1. What is the OS of the VPN Server ? Windows 2000 or Windows 2003 or
third-party ? (Cisco?)
2. If it is Windows 2000 or Windows 2003 server, is it in the domain?
3. When you log on to the VPN server, did you use the domain user account?
If not, which account?
If possible (I strongly recommend you to do this):
1. Build up a VPN Server on a Windows 2003 server
2. Build a VPN session (MS client) from a computer which is in the LAN.
3. Check if you can access the shared resource.
Thanks.
Best regards,
Vincent Xu
Microsoft Online Partner Support
======================================================
Get Secure! - www.microsoft.com/security
======================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others
may learn and benefit from this issue.
======================================================
This posting is provided "AS IS" with no warranties,and confers no rights.
======================================================
--------------------
<O6$kVQgoGHA.4240@xxxxxxxxxxxxxxxxxxxx>Thread-Topic: Remote accessing file shares problem
thread-index: AcakVCo8jB3YclTKRYm19KaylpNVyA==
X-WBNR-Posting-Host: 35.8.207.90
From: =?Utf-8?B?TlJDIEhlbHA=?= <NRC_Support@xxxxxxxxxxxxxxxx>
References: <33E3ABD9-FAF2-40FA-8E79-C9A771968E8D@xxxxxxxxxxxxx>
<85068CF5-1ABC-4F55-9240-32AACC70F75E@xxxxxxxxxxxxx>
<BN#cKE#oGHA.6028@xxxxxxxxxxxxxxxxxxxxx>
microsoft.public.windows.server.networking:40257Subject: Re: Remote accessing file shares problem
Date: Mon, 10 Jul 2006 12:08:01 -0700
Lines: 148
Message-ID: <31E02744-EA8C-487D-9A79-215F640002B9@xxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain;
charset="Utf-8"
Content-Transfer-Encoding: 7bit
X-Newsreader: Microsoft CDO for Windows 2000
Content-Class: urn:content-classes:message
Importance: normal
Priority: normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
Newsgroups: microsoft.public.windows.server.networking
Path: TK2MSFTNGXA01.phx.gbl
Xref: TK2MSFTNGXA01.phx.gbl
thereNNTP-Posting-Host: TK2MSFTNGXA01.phx.gbl 10.40.2.250
X-Tomcat-NG: microsoft.public.windows.server.networking
1. I belive it does, but we have very limited ability to customize it's
functionality since we don't maintain the concentrator (I believe).
2. I agree that when the UPN is used it should contact the DC - but it
should also contact the DC when domain\username is used.
3. Before....? Yes. Afterwards too. Same results.
4. This is a recent change though. What changed and why? I agree that
wouldcould be something changed in our environment, but help isolating that
mebe nice.
5. Since I don't have controll/access to the concentrator, that won't do
"Logmuch good.
Thanks for the help though.
"Vincent Xu [MSFT]" wrote:
Hi,
I have following thoughts:
1. Did the Cisco client has the similar function as MS VPN client that
computerin with dialup connection"?
2. When you use UPN name to verify the user name & password, I think it
should contacted the GC. That's why it is logged on successfully.
3. As you said, you modified the LMhost file, did you restart the
attemptsbefore you modify it?
4. As we know, when you logged on as cached credential and later
whyto establish a VPN connection to the network and enters credentials, no
interactive logon is attempted. Thus, no access token was made. That is
soyou are prompted to ask for user name and password later.
5. As I said in Point 1, you can try to contact Cisco to see if their
client has the function.
I hope the information helps. Let me know if you still have concerns.
Best regards,
Vincent Xu
Microsoft Online Partner Support
======================================================
Get Secure! - www.microsoft.com/security
======================================================
When responding to posts, please "Reply to Group" via your newsreader
rights.that others
may learn and benefit from this issue.
======================================================
This posting is provided "AS IS" with no warranties,and confers no
an======================================================
--------------------
<O6$kVQgoGHA.4240@xxxxxxxxxxxxxxxxxxxx>Thread-Topic: Remote accessing file shares problem
thread-index: AcaiHALt+aGbGzv4TRqcBDNsVC72xA==
X-WBNR-Posting-Host: 67.172.94.222
From: =?Utf-8?B?TlJDIEhlbHA=?= <NRC_Support@xxxxxxxxxxxxxxxx>
References: <33E3ABD9-FAF2-40FA-8E79-C9A771968E8D@xxxxxxxxxxxxx>
microsoft.public.windows.server.networking:40182Subject: Re: Remote accessing file shares problem
Date: Fri, 7 Jul 2006 16:21:01 -0700
Lines: 47
Message-ID: <85068CF5-1ABC-4F55-9240-32AACC70F75E@xxxxxxxxxxxxx>
MIME-Version: 1.0
Content-Type: text/plain;
charset="Utf-8"
Content-Transfer-Encoding: 7bit
X-Newsreader: Microsoft CDO for Windows 2000
Content-Class: urn:content-classes:message
Importance: normal
Priority: normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
Newsgroups: microsoft.public.windows.server.networking
Path: TK2MSFTNGXA01.phx.gbl
Xref: TK2MSFTNGXA01.phx.gbl
NNTP-Posting-Host: TK2MSFTNGXA01.phx.gbl 10.40.2.250
X-Tomcat-NG: microsoft.public.windows.server.networking
Thanks for the strong reply. Of course the LMHosts file is in no way
outside ofend
However,solution, simply a means to troubleshoot at this point.
Reading your post, I assume you're working with the MS VPN client.
I'm working with the Cisco VPN client, and the concentrator is
Clientmy
control. Any tips on the client end before I go digging?
Thanks.
"Phillip Windell" wrote:
"NRC Help" <NRC_Support@xxxxxxxxxxxxxxxx> wrote in message
news:33E3ABD9-FAF2-40FA-8E79-C9A771968E8D@xxxxxxxxxxxxxxxx
Client is prompted for username/password for the fileshare.
received:enters
"domain\username" and their password. The following error is
in
---
"The user name you typed is the same as the user name you logged
bewith.
That user name has already been tried. A domain controller cannot
usingfound
to
verify that user name."
What is causing this condition? I do not think that the client,
allcached
domain credentials, should be prompted for a username/password at
doeswhen
accessing domain resources. Further, the fact that "domain\user"
the_not_
work and "user@domain" _does_ is very curious.
Forget the LMHOST file and put them back the way they were.
In the Configuration of the Dialup Connection (the VPN Connection)
statically give it the DNS and WINS (if you have WINS) for the LAN.
Normally DHCP would give these but some VPN "Devices" won't give
theClients
that,...they only give the IP# and mask.
It is also a good thing if the users enable the checkbox seen at
ThisCtrl-Alt-Del prompt that says "Log in with dialup connection".
causes
locally.the machine to enable the VPN first,...then log the user into the
machine,..which creates the same effect as logging into the Domain
--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
.
- References:
- Re: Remote accessing file shares problem
- From: Vincent Xu [MSFT]
- Re: Remote accessing file shares problem
- From: NRC Help
- Re: Remote accessing file shares problem
- Prev by Date: Traffic Shaping - help
- Next by Date: Re: Site without DC
- Previous by thread: Re: Remote accessing file shares problem
- Next by thread: Remote printer spools 72 bytes
- Index(es):
Relevant Pages
|
