Solved

Routing and Remote Access in Windows 2003 loses Accounting Proivider

Posted on 2009-07-05
6
342 Views
Last Modified: 2012-05-07
We are using Routing and Remote Access to allow VPN access into our corporate network.
This works fine for both PPTP and L2TP.

The issue I have is that I want the accounting provider within RRAS to be Windows Accounting.
I go to the Properties of RRAS, Security Tab, and choose Windows Accounting as the accounting provider.
This then works as I expect and get the details that I want within the logs.

The problem is that after a period of time, usually a few days or so, the Accounting Provider reverts back to none, and i lose the logging I want.

Within the Event Viewer the only thing I can see is that RRAS service is occasionally stop and start control. Nothing i know of is doing this deliberately.

Any ideas as to where to check to get the Accounting Provider to stay as Windows Accounting?


Event Type:      Information
Event Source:      Service Control Manager
Event Category:      None
Event ID:      7036
Date:            2/07/2009
Time:            7:47:19 AM
User:            N/A
Computer:      SERVER-ISA
Description:
The Routing and Remote Access service entered the stopped state.
0
Comment
Question by:SKYCITYDarwin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 29

Assisted Solution

by:pwindell
pwindell earned 20 total points
ID: 24786104
I assume since you posted in an ISA Forum that ISA exists on this machine somewhere?
Assuming yes,...
Never touch RRAS on a machine that has ISA.
ISA "takes over" RRAS,...ISA "owns" RRAS.   ISA does all the configuration for RRAS.  If you change the config in RRAS Admin,...ISA will, on a determined cycle, will put RRAS back the way it wants it based on the ISA's own config,...but if it cannot accomplish that there is a good chance that the machine will be screwed up and a real mess will ensue, which in some cases may even require a reinstall from scratch.
There are a few things that you can do with RRAS Admin,...but not many,...and I have no list of "safe settings" that you can touch in the RRAS Admin.  I suspect creating Static Routes may be one of the safe things.
 
0
 

Author Comment

by:SKYCITYDarwin
ID: 24790273
Thanks... yes you are correct, MS ISA 2006 is also on the server with RRAS.

Ok, so if MS ISA controls RRAS, how do i tell ISA to use Windows Accounting on RRAS?
Once upon i time I used MS ISA 2000 with RRAS and i could have RRAS use Windows Accounting.

Is there a setting I can use in MS ISA 2006?
0
 
LVL 29

Expert Comment

by:pwindell
ID: 24794037
I have no idea what you mean by Windows Accounting and I have no idea what it "gives" you that you are not getting.
In ISA if you want more detail in the logs then you need to not have anonymous Rules.  Using "All Users" = anonymous.  So you need to create User Sets and add users or groups to them and then use the User Sets in the Rules instead of "All Users".  Also using the Web Proxy Service (even while using the other services too) will give you more details yet.
Note: The SecureNAT Service is not capable of authentication,...so don't use it for the "humans".  Use the SecureNAT Service only for Servers and other "unmaned" equipment.
0
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

 

Author Comment

by:SKYCITYDarwin
ID: 24799278
RRAS with Windows Accounting gives you more details in the IAS Logs.

I use some software that parses the IAS logs to allow me to review who has logged in via VPN, for how long, and any rejection messages that may occur (Auth Failure, Account Locked out, Account Disabled)
http://www.deepsoftware.com/iasviewer

What Im trying to do is make sure the Accounting Provider on the Security Tab of the properties of RRAS stays as Windows Accounting. At the moment, it will revert back to NONE, probably because of ISA as you mentioned. See Attached.

When the accounting provider is NONE, you do not get the details needed in the IAS logs to fully review the remote VPN access.
RRAS.jpg
0
 

Author Comment

by:SKYCITYDarwin
ID: 24864762
Looks like this is one of those questions which no one can help with. I will leave it open another week or so for any last comments, otherwise i will close it as unsolved.
0
 

Accepted Solution

by:
SKYCITYDarwin earned 0 total points
ID: 24892251
There has been no acceptable response to this question. I will close it as unsolved.
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Using Windows 2008 RRAS, I was able to successfully VPN into the network, but I was having problems restricting my test user from accessing certain things on the network.  I used Google in order to try to find out how to stop people from accessing c…
Microsoft's ISA Server has been its pre-eminent security product for about a decade and is still regarded amongst the well-informed as one of the best software firewalls and application gateways ever released, by any manufacturer. ISA Server has bee…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question