No Logon Server available through VPN or RAS
Posted on 2003-03-31
Basically we have two methods for remote users to access network resources 1)Through dial-up into a CISCO 3620, or 2)Through VPN client into a CISCO 3000 series concentrator. In either case the authentication is handled via CISCO Secure ACS v3.1. Authentication of the AAA clients is tied to an external user database with Windows NT/2000 selected. Settings for the clients are RADIUS CISCO IOS/PIX and RADIUS CISCO VPN 300 for the RAS and VPN clients, respectivly. The network is a Windows 2000 network still in mixed mode. We have about 100 remote users running Windows 2000 Pro on their laptops, and for most of them they can connect, browse the network, access network resources, get their email from the exchange server...etc.. However, a handful of users get "No Logon Server Available" when they try to connect to a network share. What is strange is that through the sessions log in Secure ACS it would appear that these users are being authenticated in the domain, and in fact they can access their email from the exchange server, they just can't connect to any shared resources.
Any help would be greatly appreciated.