Solved

Authenticate 2003 VPN server to different/remote active directory

Posted on 2004-04-15
6
135 Views
Last Modified: 2010-03-18
I built a 2003 VPN server with 2 nics and put it in my dmz.  Opened 1723 on gre on my firewall.  Everything is great.  

What I want is a way for this 2003 server to attach to my Active Directory domain inside the firewall to authenticate users.  I want this to be secure.  

My 2nd Nic on the PPTP VPN server has an internal address that will be able to get to my domain.  

How do I set it up so I can have the VPM server in teh DMZ connect to the AD server to authenticate to the users list?
0
Comment
Question by:mgideon
  • 2
6 Comments
 
LVL 16

Expert Comment

by:JammyPak
ID: 10842880
you might want to look at using RADIUS and IAS...

you can run IAS on the domain controller on the LAN, and create a RADIUS client on it for the VPN server. Then configure the VPN server to use RADIUS and point it at the DC - this can allow your VPN users to be authenticated against the active directory....

here's a link...
http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/sag_IAStopnode.asp
0
 

Author Comment

by:mgideon
ID: 10843829
That seem prett close, except the Active directory I want to connect to is running on a 2000 Server.  The link you send says you need 2003 to install IAS.  
0
 
LVL 16

Accepted Solution

by:
JammyPak earned 250 total points
ID: 10844450
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Domain Share problems 5 63
Clearing the ConflictAndDeleted Folder in DFSR 8 157
I'm wondering how windows server redirect perfomance 6 49
Skype password reset 1 28
This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question