Solved

VPN Authentication Issue

Posted on 2009-04-07
5
334 Views
Last Modified: 2012-05-06
Hi experts, I have the following setup, sbs 2003 with shared folders, in front of this a netgear vpn firewall. I have a couple of domain users using laptops, when they go outside of the office they can connect to the server using the netgear vpn software to establish a connection and then a rdp to remotely access the server.

The issue I have is I dont want the users to have full remote access I just want them to access shared folders. So I connect to the network using the netgear vpn then I go to run and type \\server ip, at this point I'm prompted for a username and password, if I supply the currently logged in users domain username and password I get the following error.

The username you typed is the same as the username your logged in with.

If I use a different username and password I can access the folder shares no problem, but this is obviously no good as the user isnt then able to access the correct folder shares.

Any help on this is greatly appreciated.
0
Comment
Question by:corecc
  • 3
  • 2
5 Comments
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 24098589
It has to do with dual authentication which can be difficult for Widows to deal with. One option is to log on to the remote PC with a local account (rather than cached domain account), start the VPN, and then authenticate to the server, but this is not convenient either.

Though the Netgear IPSec VPN client is more secure, the ideal "SBS way" is to use the built-in Windows VPN client, and enable port forwarding of the PPTP service on the Netgear to the SBS.
In this case there is an option to "connect using a dial up connection" on the remote PC (XPpro and earlier) at logon to the laptop. Selecting this will give you the option to connect using the SBS "Connection manager". The PPTP VPN connection is made prior to login so authentication is done to the server directly, logon scripts are applied, group policy applied, and the user given appropriate DNS and WINS IP's to access resources by name. Even mapped drives are connected.

If this is of interest, have a look at the following link as to how to install and configure the SBS VPN connection:
http://www.lan-2-wan.com/SBS-VPN-instr.htm
0
 
LVL 1

Author Comment

by:corecc
ID: 24100090
Hi Rob,
Many thanks for your response I will look into setting up the VPN as you suggested tommorrow and keep you informed of my progress, with regards to the current Netgear VPN solution have you come across the problem in a client to server VPN connection scinario before cos the chaps at Netgear have never heard of dual authenification problems with there products??
 
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24100127
I have seen the issue to which you are referring, however what is more common is when using different credentials, the server responds with "Multiple connections to a server or shared resource by the same user, using more than one user name, are not allowed". I was surprised that latter seems to work for you.
0
 
LVL 1

Author Closing Comment

by:corecc
ID: 31567524
Thanks alot I decided to go with the SBS VPN solution.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 24150525
Thanks corecc.
Cheers!
--Rob
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Small Business Server 2011. NOTE: This guide has been written using the preview version of SBS2011 therefore some of the screens may …
Overview Often, we set up VPN appliances where the connected clients are on a separate subnet and the company will have alternate internet connections and do not use this particular device as the gateway for certain servers or clients. In this case…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now