Is it possible to setup L2TP/IPSEC without certificate of preshared key?

Posted on 2003-12-08
Last Modified: 2013-12-04
I would like to use L2TP instead of pptp for my vpn solution. I am wondering if it is possible to avoid the use of both a Preshared Key or a Certificate. Is it possible to just have the Active directory check the users Login and password to extablish the connection? If yes how is this setup?
Question by:saunders4tom
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 37

Accepted Solution

bbao earned 250 total points
ID: 9926759
sure. since you need use AD's integrated authentication to establish the secure channel, so i think you need use two Windows 2000/2003 servers connect together. for more information, please refer microsoft's vpn site at:

hope it helps,

Author Comment

ID: 10048016
I did need to use certificates to use the ipsec solution.
I would like to delete this question....any objections?
LVL 37

Expert Comment

ID: 10048498
>> I did need to use certificates to use the ipsec solution

this is just what my comment suggested to you: "you need use AD's integrated authentication to establish...", why dont you just accept it directly? :)
Turn Insights Into Action

You’ve already invested in ITSM tools, chat applications, automation utilities, and more. Fortify these solutions with intelligent communications so you can drive business processes forward.

With xMatters, you'll never miss a beat.


Author Comment

ID: 10048543
My queston asked " I am wondering if it is possible to avoid the use of both a Preshared Key or a Certificate"
Your answer was........ Sure
However the correct answer was No it is Not possible to avoid the use of a Pre-shared Key or certificate.
So I don't think I can accept your answer
LVL 37

Expert Comment

ID: 10048655
oh, sorry for my english, hehe. :) it is not my native language. in my native language, if you are wondering or even negating something, and i agree with you, i should say 'YES' to support you; but in english i should say 'NO'. ;))

did you noticed my second sentence in my 1st post? it was "since you need use AD's integrated authentication to establish the secure channel", it was what i wanted to say, hehe.

anyway, if you can not accpet my "SURE", ok, no problem and no objection. :)


Author Comment

ID: 10048757
Ok, no big deal you can have the points. It was difficult digging through Microsofts Website to find out about IPSec. It seems like they really prefer us to use PPTP but now that IPSec is working I'm happy :)
Thanks for the help
LVL 37

Expert Comment

ID: 10048880
thanks for your points, saunders4tom. :) as for your pptp and ipsec: on microsoft windows platforms, PPTP was implemented early than IPSEC, so you might see more articles about microsoft PPTP. the URL in my first post is microsoft's official VPN site for W2K, if you like some 3rd party solutions or documentations, you may visit here:

VPN - Virtual Private Networking

more information from microsoft:
VPN Security


Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question