[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 805
  • Last Modified:

Is it possible to setup L2TP/IPSEC without certificate of preshared key?

I would like to use L2TP instead of pptp for my vpn solution. I am wondering if it is possible to avoid the use of both a Preshared Key or a Certificate. Is it possible to just have the Active directory check the users Login and password to extablish the connection? If yes how is this setup?
0
saunders4tom
Asked:
saunders4tom
  • 4
  • 3
1 Solution
 
bbaoIT ConsultantCommented:
sure. since you need use AD's integrated authentication to establish the secure channel, so i think you need use two Windows 2000/2003 servers connect together. for more information, please refer microsoft's vpn site at:

http://www.microsoft.com/windows2000/technologies/communications/vpn/default.asp

hope it helps,
bbao
0
 
saunders4tomAuthor Commented:
I did need to use certificates to use the ipsec solution.
I would like to delete this question....any objections?
0
 
bbaoIT ConsultantCommented:
>> I did need to use certificates to use the ipsec solution

this is just what my comment suggested to you: "you need use AD's integrated authentication to establish...", why dont you just accept it directly? :)
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
saunders4tomAuthor Commented:
My queston asked " I am wondering if it is possible to avoid the use of both a Preshared Key or a Certificate"
Your answer was........ Sure
However the correct answer was No it is Not possible to avoid the use of a Pre-shared Key or certificate.
So I don't think I can accept your answer
0
 
bbaoIT ConsultantCommented:
oh, sorry for my english, hehe. :) it is not my native language. in my native language, if you are wondering or even negating something, and i agree with you, i should say 'YES' to support you; but in english i should say 'NO'. ;))

did you noticed my second sentence in my 1st post? it was "since you need use AD's integrated authentication to establish the secure channel", it was what i wanted to say, hehe.

anyway, if you can not accpet my "SURE", ok, no problem and no objection. :)

regards,
bbao
0
 
saunders4tomAuthor Commented:
Ok, no big deal you can have the points. It was difficult digging through Microsofts Website to find out about IPSec. It seems like they really prefer us to use PPTP but now that IPSec is working I'm happy :)
Thanks for the help
0
 
bbaoIT ConsultantCommented:
thanks for your points, saunders4tom. :) as for your pptp and ipsec: on microsoft windows platforms, PPTP was implemented early than IPSEC, so you might see more articles about microsoft PPTP. the URL in my first post is microsoft's official VPN site for W2K, if you like some 3rd party solutions or documentations, you may visit here:

VPN - Virtual Private Networking
http://compnetworking.about.com/cs/vpn/

more information from microsoft:
VPN Security
http://www.microsoft.com/windows2000/techinfo/reskit/samplechapters/inbe/inbe_vpn_hueq.asp

cheers,
bbao
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now