Solved

Domain Account Lockouts and Cisco VPN

Posted on 2004-09-11
5
628 Views
Last Modified: 2010-04-12
I have a laptop that is sitting on a home workgroup connecting to a Cisco VPN. The work network is a Windows 2000 domain. The laptop connects to VPN fine, but anytime the laptop tries to touch anything on the work network I get a error saying the account is locked out. The local user account on the laptop is the same as the the domain user account at work. Is this what's causing the lockouts?

Thanks,

Justin
0
Comment
Question by:Justin Durrant
5 Comments
 
LVL 22

Expert Comment

by:Adam Leinss
Comment Utility
Cisco ACS is probably using Windows NT authenication to create the tunnel.

Then you are using a local account on your box to access resources on the company's network.

Although you have the same account, they have different SIDs.  So when you go to \\SOMEDC1\SOMEFOLDER, it probably has permissions for somdc1\someuser and not localpc\someuser.

How about joining your local box to the domain via the VPN tunnel and then logging into the work domain while you have the tunnel created?  When you close the tunnel, just pick "Workstation Only" to log in locally to your machine?
0
 
LVL 12

Expert Comment

by:valicon
Comment Utility
Have you made sure that your domain account is not locked out?  I would check that first, make sure that the domain account is not locked out and then try to vpn in.
0
 
LVL 5

Accepted Solution

by:
talphius earned 500 total points
Comment Utility
I've had similar issues with my laptop in the same configuration (Cisco Client VPN running on a non-domain member laptop connecting to Windows 2000 Domain with Cisco PIX - My usernames are the same locally and on domain).  

The workaround I use is to keep my local user account password the same as my domain password.  Works for me...
0
 
LVL 5

Expert Comment

by:talphius
Comment Utility
0
 
LVL 23

Author Comment

by:Justin Durrant
Comment Utility
I changed the user name on the laptop and all is well.. Thanks guys
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
A procedure for exporting installed hotfix details of remote computers using powershell
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now