Solved

How do I search through the active directory forest for radius authentication - I need the users to be able to logon without specifying thier domain

Posted on 2006-10-28
8
202 Views
Last Modified: 2010-03-18
I have been given the task of making our vpn user id's and passwords the same as our Active directory.

Our AD environment consists of one forest and 5 different domains

the user needs to be able to vpn in with  firstname lastname

I thought we could point our vpn device to windows/IAS radius and this would be possible - it is possible, but the user has to specify thier domain name when they log in....

Specifying the domain name is not an option for me - I can only use firstname lastname - I need something that will make radius search through our entire ad structure to find the user name (all our user names are unique)

0
Comment
Question by:scarm
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
8 Comments
 
LVL 6

Expert Comment

by:camacho_marco
ID: 17840715
Try and use Cisco VPN concnetrator, it has LDAP and you do not specify a domain only user and password.

Cheers
0
 

Author Comment

by:scarm
ID: 17847509
do you have to use distinguished or fully qualified names?

Also, our vpn is not cisco - it's F5 network's uroam product

- multiple domains - users need to login without specifying domain name
0
 

Author Comment

by:scarm
ID: 17911109
Nobody has any radius / active directory experience out there??
0
 
LVL 9

Accepted Solution

by:
CLoz earned 500 total points
ID: 18097267
If you are using the F5 Firepass you should be able to create a Master Group that authenticates directly with your AD server.  As long as you don't have users with matching ID's across the 5 domains you will not need to supply the domain name during authentication.  

Let me know if you need help creating the Master Group.

-Cloz
0
 
LVL 6

Expert Comment

by:camacho_marco
ID: 19406994
split points
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses
Course of the Month5 days, 12 hours left to enroll

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question