Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

VPN Authentication Issue

Posted on 2009-04-07
5
Medium Priority
?
341 Views
Last Modified: 2012-05-06
Hi experts, I have the following setup, sbs 2003 with shared folders, in front of this a netgear vpn firewall. I have a couple of domain users using laptops, when they go outside of the office they can connect to the server using the netgear vpn software to establish a connection and then a rdp to remotely access the server.

The issue I have is I dont want the users to have full remote access I just want them to access shared folders. So I connect to the network using the netgear vpn then I go to run and type \\server ip, at this point I'm prompted for a username and password, if I supply the currently logged in users domain username and password I get the following error.

The username you typed is the same as the username your logged in with.

If I use a different username and password I can access the folder shares no problem, but this is obviously no good as the user isnt then able to access the correct folder shares.

Any help on this is greatly appreciated.
0
Comment
Question by:corecc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 77

Accepted Solution

by:
Rob Williams earned 1500 total points
ID: 24098589
It has to do with dual authentication which can be difficult for Widows to deal with. One option is to log on to the remote PC with a local account (rather than cached domain account), start the VPN, and then authenticate to the server, but this is not convenient either.

Though the Netgear IPSec VPN client is more secure, the ideal "SBS way" is to use the built-in Windows VPN client, and enable port forwarding of the PPTP service on the Netgear to the SBS.
In this case there is an option to "connect using a dial up connection" on the remote PC (XPpro and earlier) at logon to the laptop. Selecting this will give you the option to connect using the SBS "Connection manager". The PPTP VPN connection is made prior to login so authentication is done to the server directly, logon scripts are applied, group policy applied, and the user given appropriate DNS and WINS IP's to access resources by name. Even mapped drives are connected.

If this is of interest, have a look at the following link as to how to install and configure the SBS VPN connection:
http://www.lan-2-wan.com/SBS-VPN-instr.htm
0
 
LVL 1

Author Comment

by:corecc
ID: 24100090
Hi Rob,
Many thanks for your response I will look into setting up the VPN as you suggested tommorrow and keep you informed of my progress, with regards to the current Netgear VPN solution have you come across the problem in a client to server VPN connection scinario before cos the chaps at Netgear have never heard of dual authenification problems with there products??
 
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24100127
I have seen the issue to which you are referring, however what is more common is when using different credentials, the server responds with "Multiple connections to a server or shared resource by the same user, using more than one user name, are not allowed". I was surprised that latter seems to work for you.
0
 
LVL 1

Author Closing Comment

by:corecc
ID: 31567524
Thanks alot I decided to go with the SBS VPN solution.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24150525
Thanks corecc.
Cheers!
--Rob
0

Featured Post

Q2 2017 - Latest Malware & Internet Attacks

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out our latest Quarterly Internet Security Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question