Re: VPN setup with RADIUS

Hi Crina,

Can you please let me know what ports I need to open for VPN to work on the
router? I forgot to open up port 1723 so now it's getting further and it's
trying to authenticate the username/password. However, I'm now getting an
error about the remote computer not responding. Check the error log and I
get error code 721.

Thanks.


"Newbie" <newbie@xxxxxxxxxxx> wrote in message
news:%23Xp$SkWBGHA.2664@xxxxxxxxxxxxxxxxxxxxxxx
> Hi Crina,
>
> Thanks for your information, it was very helpful. However, now I wonder
> if I should use RADIUS for authenticating users or use windows login
> instead? The ISA server is active directory integrated and all VPN clients
> are running XP Pro.
>
> For some reason though, even though I selected user authentication, I
> still can't connect to the server via VPN. I get the following error in
> the client log and I'm not sure what could be the cause of this. Your
> help on this would be much appreciated.
>
> Simon
>
>
> ******************************************************************
> Operating System : Windows NT 5.1 Service Pack 2
> Dialer Version : 7.2.2600.2180
> Connection Name : Connect to Small Business Server
> All Users/Single User : Single User
> Start Date/Time : 12/20/2005, 8:13:53
> ******************************************************************
> Module Name, Time, Log ID, Log Item Name, Other Info
> For Connection Type, 0=dial-up, 1=VPN, 2=VPN over dial-up
> ******************************************************************
> [cmdial32] 8:13:53 03 Pre-Init Event CallingProcess =
> C:\WINDOWS\Explorer.EXE
> [cmdial32] 8:14:01 04 Pre-Connect Event ConnectionType = 1
> [cmdial32] 8:14:01 06 Pre-Tunnel Event UserName = Laptop User Domain =
> DOMAINNAME DUNSetting = Connect to Small Business Server Tunnel DeviceName
> = TunnelAddress = domainname.com
> [cmdial32] 8:14:22 20 On-Error Event ErrorCode = 800 ErrorSource = RAS
> [cmdial32] 8:14:27 06 Pre-Tunnel Event UserName = Laptop User Domain =
> DOMAINNAME DUNSetting = Connect to Small Business Server Tunnel DeviceName
> = TunnelAddress = domainname.com
> [cmdial32] 8:14:48 20 On-Error Event ErrorCode = 800 ErrorSource = RAS
> [cmdial32] 8:14:53 06 Pre-Tunnel Event UserName = Laptop User Domain =
> DOMAINNAME DUNSetting = Connect to Small Business Server Tunnel DeviceName
> = TunnelAddress = domainname.com[cmdial32] 8:15:15 20 On-Error Event
> ErrorCode = 800 ErrorSource = RAS
> [cmdial32] 8:15:20 06 Pre-Tunnel Event UserName = Laptop User Domain =
> DOMAINNAME DUNSetting = Connect to Small Business Server Tunnel DeviceName
> = TunnelAddress = domainname.com[cmdial32] 8:15:42 20 On-Error Event
> ErrorCode = 800 ErrorSource = RAS
>
>
>
> ""Crina Li"" <v-crinal@xxxxxxxxxxxxxxxxxxxx> wrote in message
> news:xSnY5cSBGHA.3764@xxxxxxxxxxxxxxxxxxxxxxxx
>> Hi Newbie,
>>
>> Thank you for posting in SBS newsgroup.
>>
>> From the description, I understand that the ISA 2004 server is configured
>> to authorize the VPN clients by using RADIUS server. If I have
>> misunderstood your concerns, please do not hesitate to let me know.
>>
>> Basically, to use the RADIUS to authorize the VPN clients, we need to do
>> the following steps:
>>
>> 1. On the ISA server, enable the VPN client access. Configure the server
>> to
>> use RADIUS for authentication. Add the IP address or servername of RADIUS
>> server into the list. The default RADIUS port is 1812. Make sure that
>> server can be contacted. Apply the changes.
>>
>> 2. Go to the RADIUS server. Open the IAS console. Add a RADIUS client
>> with
>> the ISA server's internal IP address. Select ''Microsoft'' for the
>> client-vendor.
>>
>> 3. You can input a password for ''Shared secret''. Make sure that the
>> secret password of RADIUS and ISA are consistent.
>>
>> For detailed steps, you may refer to the following links for the RADIUS
>> based VPN configurations in ISA server 2004:
>>
>> http://www.isaserver.org/articles/2004vpnradius.html
>>
>> 884492 The RADIUS authentication process in ISA Server 2004
>> http://support.microsoft.com/?id=884492
>>
>> If you have any questions or concerns, please feel free to let me know. I
>> look forward to your reply!
>>
>> Best regards,
>>
>> Crina Li (MSFT)
>>
>> Microsoft CSS Online Newsgroup Support
>>
>> Get Secure! - www.microsoft.com/security
>>
>> =====================================================
>> This newsgroup only focuses on SBS technical issues. If you have issues
>> regarding other Microsoft products, you'd better post in the
>> corresponding
>> newsgroups so that they can be resolved in an efficient and timely
>> manner.
>> You can locate the newsgroup here:
>> http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
>>
>> When opening a new thread via the web interface, we recommend you check
>> the
>> "Notify me of replies" box to receive e-mail notifications when there are
>> any updates in your thread. When responding to posts via your newsreader,
>> please "Reply to Group" so that others may learn and benefit from your
>> issue.
>>
>> Microsoft engineers can only focus on one issue per thread. Although we
>> provide other information for your reference, we recommend you post
>> different incidents in different threads to keep the thread clean. In
>> doing
>> so, it will ensure your issues are resolved in a timely manner.
>>
>> For urgent issues, you may want to contact Microsoft CSS directly. Please
>> check http://support.microsoft.com for regional support phone numbers.
>>
>> Any input or comments in this thread are highly appreciated.
>>
>> =====================================================
>>
>> This posting is provided "AS IS" with no warranties, and confers no
>> rights.
>> --------------------
>> | From: "Newbie" <newbie@xxxxxxxxxxx>
>> | Subject: VPN setup with RADIUS
>> | Date: Mon, 19 Dec 2005 08:28:09 -0500
>> | | Newsgroups: microsoft.public.windows.server.sbs
>> | |
>> | Hi,
>> |
>> | I'm trying to set up VPN on a laptop and I have the VPN client
>> installed.
>> | However, it doesn't connect after I entered the username, password, and
>> | domain name. From ISA 2004, I was getting a warning message about
>> RADIUS
>> | server so I setup a RADIUS connection (or at least I thought I did). I
>> have
>> | IAS installed on the SBS server.
>> |
>> | What am I doing wrong, is it safer to set up with RADIUS
>> authentication?
>> |
>> | Thanks for your help.
>> |
>> |
>> |
>>
>
>


.

Relevant Pages

  • Re: VPN setup with RADIUS
    ... 47.This port is used for incoming PPTP VPN connection) are needed to open ... allowing protocol GRE/47 to be forwarded to your SBS server. ... This newsgroup only focuses on SBS technical issues. ... | Subject: Re: VPN setup with RADIUS ...
    (microsoft.public.windows.server.sbs)
  • Re: Desperate Housewife Win 2000 Server vpn mess !
    ... the vpn clients receive their IP I presume. ... > Can you make a VPN connection to the server from a local LAN client? ...
    (microsoft.public.win2000.ras_routing)
  • Re: Remote user doesnt have permission to dial in , after installing RADIUS 2003 Server
    ... I recently setup a CA / Radius server in order to verify wireless ... now vpn clients cannot dial in to the network (VPN ... IAS server (and configure the RRAS server to use RADIUS authentication and ...
    (microsoft.public.windows.server.networking)
  • Re: Remote user doesnt have permission to dial in , after installing RADIUS 2003 Server
    ... I recently setup a CA / Radius server in order to verify wireless ... now vpn clients cannot dial in to the network (VPN ... IAS server (and configure the RRAS server to use RADIUS authentication and ...
    (microsoft.public.windows.server.networking)
  • RE: VPN setup with RADIUS
    ... to authorize the VPN clients by using RADIUS server. ... Basically, to use the RADIUS to authorize the VPN clients, we need to do ... On the ISA server, ...
    (microsoft.public.windows.server.sbs)
Loading