swatgear
asked on
Do I join an outside sales person's laptop to my domain?
Hello,
Here's the brief description:
What strategy should I take for my outside sales people that (1) use laptops, (2) almost never come back to the main office, (3) use Outlook 2007, (4) client VPN software, and (5) have their My Documents folder redirected to the server, when it comes to managing user accounts?
I'm being a bit brief on purpose but the main problem I'm having is that cached credentials don't get updated once their domain password is changed after their password expires. How do I update the cached credentials if they can't create a VPN connection until AFTER they've logged in (using their cached credentials)?
Thank you!
Here's the brief description:
What strategy should I take for my outside sales people that (1) use laptops, (2) almost never come back to the main office, (3) use Outlook 2007, (4) client VPN software, and (5) have their My Documents folder redirected to the server, when it comes to managing user accounts?
I'm being a bit brief on purpose but the main problem I'm having is that cached credentials don't get updated once their domain password is changed after their password expires. How do I update the cached credentials if they can't create a VPN connection until AFTER they've logged in (using their cached credentials)?
Thank you!
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Depending on the client VPN software, there is often the ability to fire off teh vpn connection before the user actually logs on - its all contoroled at the logon screen - that way, its a hell of a lot cleaner
ASKER
It's Sonicwall's Global VPN client. But even if Sonicwall's client is not compatible with that, how would I setup it up with a different client? (Just for the sake of curiosity.)
And actually, I do know that I can use a 3rd party program called FireDaemon to turn the program into a service, but it's a big of kludge and I'm not totally happy with it as a long term solution (extra software costs being the major reason).
And actually, I do know that I can use a 3rd party program called FireDaemon to turn the program into a service, but it's a big of kludge and I'm not totally happy with it as a long term solution (extra software costs being the major reason).
SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
But by "dial up" you mean I have to have some kind of 56k modem listening at my main office? Who does that anymore?
SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
Well I've done a little bit of research and it looks like Sonicwall does not work out as a PPTP VPN server(?). But it also looks like I can use one of my Windows 2003 servers for this role. However, my question now is, would I be able to use one of my existing 2003 servers, already on my network, or would I need to have a new 2003 server that acted as a gateway to the rest of the network.
That is, will I need a setup like: Client -> Internet -> Firewall -> 2003 VPN Server -> Local Network ?
That is, will I need a setup like: Client -> Internet -> Firewall -> 2003 VPN Server -> Local Network ?
SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.