Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Authenticate 2003 VPN server to different/remote active directory

Posted on 2004-04-15
6
Medium Priority
?
142 Views
Last Modified: 2010-03-18
I built a 2003 VPN server with 2 nics and put it in my dmz.  Opened 1723 on gre on my firewall.  Everything is great.  

What I want is a way for this 2003 server to attach to my Active Directory domain inside the firewall to authenticate users.  I want this to be secure.  

My 2nd Nic on the PPTP VPN server has an internal address that will be able to get to my domain.  

How do I set it up so I can have the VPM server in teh DMZ connect to the AD server to authenticate to the users list?
0
Comment
Question by:mgideon
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 16

Expert Comment

by:JammyPak
ID: 10842880
you might want to look at using RADIUS and IAS...

you can run IAS on the domain controller on the LAN, and create a RADIUS client on it for the VPN server. Then configure the VPN server to use RADIUS and point it at the DC - this can allow your VPN users to be authenticated against the active directory....

here's a link...
http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/sag_IAStopnode.asp
0
 

Author Comment

by:mgideon
ID: 10843829
That seem prett close, except the Active directory I want to connect to is running on a 2000 Server.  The link you send says you need 2003 to install IAS.  
0
 
LVL 16

Accepted Solution

by:
JammyPak earned 1000 total points
ID: 10844450
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes you might need to configure routing based not only on destination IP address, but also on a combination of destination IP address (or hostname) and destination port number. I will describe a method how to accomplish this with free tools. …
Have you ever set up your wireless router at home or in the office to find that you little pop-up bubble in the bottom right-hand corner of Windows read "IP Conflict - One of more computers on the network have been assigned the following IP address"…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question