RE: Setup guidlanes to install SBS-Radius (to control IPSec VPN Fi

Thanks Miles

I confirm that you have understod my problem correctly. I believe that I'm
cabable to set up the FW to be RADIUS client for WIN RADIUS Server. The rest
(majority) is my problem.

I investigate now your links. At the first look the task seems pretty
tricky. Wonder if I have courage enough to implemet this in our company at
first...

Thanks again.

Juha

"Miles Li [MSFT]" wrote:


Hello,

Thank you for posting here.

According to your description, I understand that:

You want the firewall that act as the IPsec VPN server (for remote access
and site-to-site connection) to have integrated authentication with the SBS
server AD by RADIUS.

If I have misunderstood the problem, please don't hesitate to let me know.

Suggestions:
=========================
For a VPN server (remote access server), it is a good practice to make it a
RADIUS client of the Windows IAS for integrated authentication and
accounting.

To configure the firewall as the RADIUS client of the Windows IAS, the
configuration is simple and different in the firewall from multiple
venders. For example, for a Cisco IOS router you may refer to:

Configuring IPSec Between a Cisco IOS Router and a Cisco VPN Client 4.x for
Windows Using RADIUS
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_examp
le09186a00800949ba.shtml

From the description, I think you got stuck with the certificate for secure
the traffic by IPsec between the RADIUS server and the RADIUS client. For
more related information, you may refer to:

Dial-up and VPN remote access
http://technet.microsoft.com/en-us/library/cc782585.aspx

Implementing Your IAS Solution
http://technet.microsoft.com/en-us/library/cc787513.aspx
Hope this helps. Also, if you have any questions or concerns, please do not
hesitate to let me know.




Best regards,
Miles Li

Microsoft Online Partner Support
Microsoft Global Technical Support Center

Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.



.

Relevant Pages

  • RE: Setup guidlanes to install SBS-Radius (to control IPSec VPN Firewa
    ... You want the firewall that act as the IPsec VPN server (for remote access ... To configure the firewall as the RADIUS client of the Windows IAS, ...
    (microsoft.public.windows.server.sbs)
  • Re: Windows Authentication issue
    ... IAS server Configured as a member server and ... about what a RADIUS client is: ... "We want to authenticate Radius Clients using AD User credentials." ... RADIUS clients use the RADIUS protocol to communicate with IAS or ...
    (microsoft.public.internet.radius)
  • Re: Setup guidlanes to install SBS-Radius (to control IPSec VPN Fi
    ... You may also wish to look at this excellent explanation of setting up secure wireless for SBS from a former MVP ... Windows Small Business Server 2008 Unleashed ... cabable to set up the FW to be RADIUS client for WIN RADIUS Server. ...
    (microsoft.public.windows.server.sbs)
  • Re: Adding A Radius Client
    ... The Radius client setting is needed when you are using a different IAS ... we add the RRAS VPN server as the RADIUS client on the IAS ...
    (microsoft.public.isa.vpn)
  • Provide a pool ip from IAS to Radius Clients
    ... I have a IAS server installed in my ... I need to provide to the radius client some ... works well and I'm able to establish the connection, but, ...
    (microsoft.public.internet.radius)