Solved

Authenticate 2003 VPN server to different/remote active directory

Posted on 2004-04-15
6
133 Views
Last Modified: 2010-03-18
I built a 2003 VPN server with 2 nics and put it in my dmz.  Opened 1723 on gre on my firewall.  Everything is great.  

What I want is a way for this 2003 server to attach to my Active Directory domain inside the firewall to authenticate users.  I want this to be secure.  

My 2nd Nic on the PPTP VPN server has an internal address that will be able to get to my domain.  

How do I set it up so I can have the VPM server in teh DMZ connect to the AD server to authenticate to the users list?
0
Comment
Question by:mgideon
  • 2
6 Comments
 
LVL 16

Expert Comment

by:JammyPak
ID: 10842880
you might want to look at using RADIUS and IAS...

you can run IAS on the domain controller on the LAN, and create a RADIUS client on it for the VPN server. Then configure the VPN server to use RADIUS and point it at the DC - this can allow your VPN users to be authenticated against the active directory....

here's a link...
http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/sag_IAStopnode.asp
0
 

Author Comment

by:mgideon
ID: 10843829
That seem prett close, except the Active directory I want to connect to is running on a 2000 Server.  The link you send says you need 2003 to install IAS.  
0
 
LVL 16

Accepted Solution

by:
JammyPak earned 250 total points
ID: 10844450
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
An article on effective troubleshooting
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question