Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Is it possible to setup L2TP/IPSEC without certificate of preshared key?

Posted on 2003-12-08
7
Medium Priority
?
794 Views
Last Modified: 2013-12-04
I would like to use L2TP instead of pptp for my vpn solution. I am wondering if it is possible to avoid the use of both a Preshared Key or a Certificate. Is it possible to just have the Active directory check the users Login and password to extablish the connection? If yes how is this setup?
0
Comment
Question by:saunders4tom
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 37

Accepted Solution

by:
bbao earned 750 total points
ID: 9926759
sure. since you need use AD's integrated authentication to establish the secure channel, so i think you need use two Windows 2000/2003 servers connect together. for more information, please refer microsoft's vpn site at:

http://www.microsoft.com/windows2000/technologies/communications/vpn/default.asp

hope it helps,
bbao
0
 

Author Comment

by:saunders4tom
ID: 10048016
I did need to use certificates to use the ipsec solution.
I would like to delete this question....any objections?
0
 
LVL 37

Expert Comment

by:bbao
ID: 10048498
>> I did need to use certificates to use the ipsec solution

this is just what my comment suggested to you: "you need use AD's integrated authentication to establish...", why dont you just accept it directly? :)
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:saunders4tom
ID: 10048543
My queston asked " I am wondering if it is possible to avoid the use of both a Preshared Key or a Certificate"
Your answer was........ Sure
However the correct answer was No it is Not possible to avoid the use of a Pre-shared Key or certificate.
So I don't think I can accept your answer
0
 
LVL 37

Expert Comment

by:bbao
ID: 10048655
oh, sorry for my english, hehe. :) it is not my native language. in my native language, if you are wondering or even negating something, and i agree with you, i should say 'YES' to support you; but in english i should say 'NO'. ;))

did you noticed my second sentence in my 1st post? it was "since you need use AD's integrated authentication to establish the secure channel", it was what i wanted to say, hehe.

anyway, if you can not accpet my "SURE", ok, no problem and no objection. :)

regards,
bbao
0
 

Author Comment

by:saunders4tom
ID: 10048757
Ok, no big deal you can have the points. It was difficult digging through Microsofts Website to find out about IPSec. It seems like they really prefer us to use PPTP but now that IPSec is working I'm happy :)
Thanks for the help
0
 
LVL 37

Expert Comment

by:bbao
ID: 10048880
thanks for your points, saunders4tom. :) as for your pptp and ipsec: on microsoft windows platforms, PPTP was implemented early than IPSEC, so you might see more articles about microsoft PPTP. the URL in my first post is microsoft's official VPN site for W2K, if you like some 3rd party solutions or documentations, you may visit here:

VPN - Virtual Private Networking
http://compnetworking.about.com/cs/vpn/

more information from microsoft:
VPN Security
http://www.microsoft.com/windows2000/techinfo/reskit/samplechapters/inbe/inbe_vpn_hueq.asp

cheers,
bbao
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question