Solved

Remote log in to Active Directory for the first time

Posted on 2008-10-02
13
896 Views
Last Modified: 2011-10-19
Hope somebody can help quick. Thanks in advance
I have a XP Pro SP2 laptop, it has joined our AD. But never logged in using a domain account before sent to remote home office. The plan is to use Sonicwall Global VPN Client to connect to HQ for all the work.
Now my question is, how do I log into my AD remotely (using a domain account) for the first time? When I check "Log on using dial-up network", I can not get Sonicwall GVC to show there.
0
Comment
Question by:flyingsky
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 5
  • 3
13 Comments
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22624436
I would suggest you to do this,

1.Login with the local admin account
2.Connect the VPN to your Domain
3.Logoff (Make sure vpn is not disconnected during logoff, there should a option on vpn client for this)
4.Login with your domain account
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22624459
1) Login as admin in the laptop
2) Establish a VPN connection
3) Use the command "net use \\server\share /user:domain\username", replacing the "server", "share", "domain", and "username" parts with the proper info for the user. I mean to access any shared folder with the final user account. This in order to save the username credentials in the local cache of the laptop.

This way, next time you should be able to login locally with the username domain credentials using the cache, so that the user can log in, and connect to the VPN.
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22624470
Oh, I saw sk_raja_raja post after submitting my post.
0
What, When and Where - Security Threats from Q1

Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.

 
LVL 9

Expert Comment

by:pablovr
ID: 22624476
Though, answers are a little different.
0
 
LVL 18

Author Comment

by:flyingsky
ID: 22625030
To sk_raja_raja:
    Do you know how to keep Sonicwall VPN running when log off? I don't seem to be able to find that option.

To pablovr:
    That didn't work. I did what you suggested using net use command. The command finished succesfully. But when I log off and try log on back using the domain credential, I still got "domain not available" error.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22625065
ok...just try to logoff and login with your domain account and see.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22625086
what version of sonic wall cleint you use....let me look in to the userguide
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22625109
Try this then:

1) Login as admin in the laptop
2) Establish a VPN connection
3) Add the domain user to the local "Administrators" group, or any other group. This way it must work.

This way, next time you should be able to login locally with the username domain credentials using the cache, so that the user can log in, and connect to the VPN.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22625171
but i am sure for the first time login ,,,,there should be an active vpn connection to create a user profile... Like "Pablovr" said you can add the user to local admin group and also try to create a new user profile by ight click my computer,properties,advance,userprofiles and settings...This may work
0
 
LVL 18

Author Comment

by:flyingsky
ID: 22625508
Still no luck
To sk_raja_raja:
    I am using Sonicwall GVC 4.0.0.830

To pablovr:
    I am successfully added that domain user to the local admin group, then issued the net use command again successfully. But after I logged off, I still cannot log on as the domain user.
0
 
LVL 9

Expert Comment

by:pablovr
ID: 22625515
Adding the user to a local group is temporarily, once the user accomplishes to logon, then you may remove him/her from that group.
0
 
LVL 18

Accepted Solution

by:
sk_raja_raja earned 500 total points
ID: 22625592
I dont think you can achieve this without connecting the machine in the lan for the fisrt time,login with domain account which creates a profile and then it can be used in remote office. Infact cisco cpn client clearly shows an option not to disable vpn tunnel when logoff but it looks sonicwall client does not support this...take a look in to the attached document.....

Other workaround may be...to create a windows vpn on the client and then you can login with "Log on using dial-up network" option...... did you try this ?do you provide shared key during sonic wall vpn login ?
GVC-4.0.0-Release-Notes.pdf
0
 
LVL 18

Author Comment

by:flyingsky
ID: 22785815
I was able to talk to Sonicwall Support and know I can setup my Sonicwall Firewall to accept MS VPN connection using L2TP, however, I am not able to try this by myself because this is going to disconnect the other users who use Sonicwall GVC. So I will arrange to have that machine on-site to cache credentials.
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question