Solved

Remote log in to Active Directory for the first time

Posted on 2008-10-02
13
889 Views
Last Modified: 2011-10-19
Hope somebody can help quick. Thanks in advance
I have a XP Pro SP2 laptop, it has joined our AD. But never logged in using a domain account before sent to remote home office. The plan is to use Sonicwall Global VPN Client to connect to HQ for all the work.
Now my question is, how do I log into my AD remotely (using a domain account) for the first time? When I check "Log on using dial-up network", I can not get Sonicwall GVC to show there.
0
Comment
Question by:flyingsky
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 5
  • 3
13 Comments
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22624436
I would suggest you to do this,

1.Login with the local admin account
2.Connect the VPN to your Domain
3.Logoff (Make sure vpn is not disconnected during logoff, there should a option on vpn client for this)
4.Login with your domain account
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22624459
1) Login as admin in the laptop
2) Establish a VPN connection
3) Use the command "net use \\server\share /user:domain\username", replacing the "server", "share", "domain", and "username" parts with the proper info for the user. I mean to access any shared folder with the final user account. This in order to save the username credentials in the local cache of the laptop.

This way, next time you should be able to login locally with the username domain credentials using the cache, so that the user can log in, and connect to the VPN.
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22624470
Oh, I saw sk_raja_raja post after submitting my post.
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 9

Expert Comment

by:pablovr
ID: 22624476
Though, answers are a little different.
0
 
LVL 18

Author Comment

by:flyingsky
ID: 22625030
To sk_raja_raja:
    Do you know how to keep Sonicwall VPN running when log off? I don't seem to be able to find that option.

To pablovr:
    That didn't work. I did what you suggested using net use command. The command finished succesfully. But when I log off and try log on back using the domain credential, I still got "domain not available" error.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22625065
ok...just try to logoff and login with your domain account and see.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22625086
what version of sonic wall cleint you use....let me look in to the userguide
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22625109
Try this then:

1) Login as admin in the laptop
2) Establish a VPN connection
3) Add the domain user to the local "Administrators" group, or any other group. This way it must work.

This way, next time you should be able to login locally with the username domain credentials using the cache, so that the user can log in, and connect to the VPN.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22625171
but i am sure for the first time login ,,,,there should be an active vpn connection to create a user profile... Like "Pablovr" said you can add the user to local admin group and also try to create a new user profile by ight click my computer,properties,advance,userprofiles and settings...This may work
0
 
LVL 18

Author Comment

by:flyingsky
ID: 22625508
Still no luck
To sk_raja_raja:
    I am using Sonicwall GVC 4.0.0.830

To pablovr:
    I am successfully added that domain user to the local admin group, then issued the net use command again successfully. But after I logged off, I still cannot log on as the domain user.
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22625515
Adding the user to a local group is temporarily, once the user accomplishes to logon, then you may remove him/her from that group.
0
 
LVL 18

Accepted Solution

by:
sk_raja_raja earned 500 total points
ID: 22625592
I dont think you can achieve this without connecting the machine in the lan for the fisrt time,login with domain account which creates a profile and then it can be used in remote office. Infact cisco cpn client clearly shows an option not to disable vpn tunnel when logoff but it looks sonicwall client does not support this...take a look in to the attached document.....

Other workaround may be...to create a windows vpn on the client and then you can login with "Log on using dial-up network" option...... did you try this ?do you provide shared key during sonic wall vpn login ?
GVC-4.0.0-Release-Notes.pdf
0
 
LVL 18

Author Comment

by:flyingsky
ID: 22785815
I was able to talk to Sonicwall Support and know I can setup my Sonicwall Firewall to accept MS VPN connection using L2TP, however, I am not able to try this by myself because this is going to disconnect the other users who use Sonicwall GVC. So I will arrange to have that machine on-site to cache credentials.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
This article runs through the process of deploying a single EXE application selectively to a group of user.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question