Solved

Authenticate 2003 VPN server to different/remote active directory

Posted on 2004-04-15
6
131 Views
Last Modified: 2010-03-18
I built a 2003 VPN server with 2 nics and put it in my dmz.  Opened 1723 on gre on my firewall.  Everything is great.  

What I want is a way for this 2003 server to attach to my Active Directory domain inside the firewall to authenticate users.  I want this to be secure.  

My 2nd Nic on the PPTP VPN server has an internal address that will be able to get to my domain.  

How do I set it up so I can have the VPM server in teh DMZ connect to the AD server to authenticate to the users list?
0
Comment
Question by:mgideon
  • 2
6 Comments
 
LVL 16

Expert Comment

by:JammyPak
ID: 10842880
you might want to look at using RADIUS and IAS...

you can run IAS on the domain controller on the LAN, and create a RADIUS client on it for the VPN server. Then configure the VPN server to use RADIUS and point it at the DC - this can allow your VPN users to be authenticated against the active directory....

here's a link...
http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/sag_IAStopnode.asp
0
 

Author Comment

by:mgideon
ID: 10843829
That seem prett close, except the Active directory I want to connect to is running on a 2000 Server.  The link you send says you need 2003 to install IAS.  
0
 
LVL 16

Accepted Solution

by:
JammyPak earned 250 total points
ID: 10844450
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question