POL
asked on
(Cisco) Altiga VPN concentrator series
Our network admin, left and I was left holding the bag...
We had VPN services with a Altiga VPN Concentrator Series which was working fine until our PDC crashed and I had to rebuild it.
I'm not a network admin, but I'm very knowledgeable about windows, but not with routers, switches, or concentrators.
When I rebuilt the server I did not make it a PDC, instead I made it a member server. Now when I try to connect to our VPN, it seems to not be doing anything. It seems to be stuck on authenticating. I assume the VPN concentrator uses windows NT to do authentication. Is there something I need to install for this authentication?
Win NT 4.0 SP6
thanks
We had VPN services with a Altiga VPN Concentrator Series which was working fine until our PDC crashed and I had to rebuild it.
I'm not a network admin, but I'm very knowledgeable about windows, but not with routers, switches, or concentrators.
When I rebuilt the server I did not make it a PDC, instead I made it a member server. Now when I try to connect to our VPN, it seems to not be doing anything. It seems to be stuck on authenticating. I assume the VPN concentrator uses windows NT to do authentication. Is there something I need to install for this authentication?
Win NT 4.0 SP6
thanks
I imagine that the server was running RADIUS to authenticate the VPN and you did not setup RADIUS when you rebuilt the box. I am not aware of a VPN deive that queiries the NT SAM directly.
The Cisco VPN concentrator all support the use of Microsoft NT Domain authentication.
You say your PDC crashed and you rebuilt it as a member server. A member server of what? Do you have more domain controllers? More then likely the VPN device was pointing the the PDC for user authentication and you rebuilt it as a member server and it doesn't work anymore. If you want specifics of how to set this up you should definitely call cisco and see if you can't get an engineer out there to help you.
You say your PDC crashed and you rebuilt it as a member server. A member server of what? Do you have more domain controllers? More then likely the VPN device was pointing the the PDC for user authentication and you rebuilt it as a member server and it doesn't work anymore. If you want specifics of how to set this up you should definitely call cisco and see if you can't get an engineer out there to help you.
I haven't worked with an Altiga concentrator in a while, but I certainly don't remember it being able to natively authenticate against NT. If it does, I would question why anything authenticating directly against the SAM would need to be told where a DC is. I tend to agree with geoffryn that RADIUS was most likely installed on the box in question. This is how I set up NT authentication with the Altiga in the past. Assuming this is the case, you'll most likely need to install RADIUS and reset it up on the concentrator, as you most likely do not know the shared key it was using. I don't remember the exact steps as it has been a while, but I hope this gets you started in the right direction!
Did you change the IP address of the server when you rebuilt it? The VPN concentrator should have an ip address and NETBIOS system name of the PDC. If this changed, you need to make the appropriate changes on the VPN concentrator.
This question appears to be abandoned. I will allow one week before I close this question
with the following recommendation:
- delete due to non response
if there is any objection to this recommendation then please post it here within 7 days.
thanks,
lrmoore@nw
EE Cleanup Volunteer
with the following recommendation:
- delete due to non response
if there is any objection to this recommendation then please post it here within 7 days.
thanks,
lrmoore@nw
EE Cleanup Volunteer
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.