Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Authenticate 2003 VPN server to different/remote active directory

Posted on 2004-04-15
6
Medium Priority
?
146 Views
Last Modified: 2010-03-18
I built a 2003 VPN server with 2 nics and put it in my dmz.  Opened 1723 on gre on my firewall.  Everything is great.  

What I want is a way for this 2003 server to attach to my Active Directory domain inside the firewall to authenticate users.  I want this to be secure.  

My 2nd Nic on the PPTP VPN server has an internal address that will be able to get to my domain.  

How do I set it up so I can have the VPM server in teh DMZ connect to the AD server to authenticate to the users list?
0
Comment
Question by:mgideon
  • 2
6 Comments
 
LVL 16

Expert Comment

by:JammyPak
ID: 10842880
you might want to look at using RADIUS and IAS...

you can run IAS on the domain controller on the LAN, and create a RADIUS client on it for the VPN server. Then configure the VPN server to use RADIUS and point it at the DC - this can allow your VPN users to be authenticated against the active directory....

here's a link...
http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/sag_IAStopnode.asp
0
 

Author Comment

by:mgideon
ID: 10843829
That seem prett close, except the Active directory I want to connect to is running on a 2000 Server.  The link you send says you need 2003 to install IAS.  
0
 
LVL 16

Accepted Solution

by:
JammyPak earned 1000 total points
ID: 10844450
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Are you ready to place your question in front of subject-matter experts for more timely responses? With the release of Priority Question, Premium Members, Team Accounts and Qualified Experts can now identify the emergent level of their issue, signal…

972 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question