Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Authenticarte non domain servers through IAS RADIUS

Posted on 2011-02-10
4
Medium Priority
?
541 Views
Last Modified: 2012-05-11
Have already configured the IAS RADIUS in domain and registed the IAS in AD. Now I want to all the rest of the servers which are not connected in domain , should authenticate through IAS.
0
Comment
Question by:sivark14
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:Tasmant
ID: 34869943
Please, could you describe better what you want to achieve, because for the moment it is really unclear.
0
 

Author Comment

by:sivark14
ID: 34885933
Hi, We have configured the IAS Radius in windows server 2003 for VPN clients and we have registered it to the AD. While VPN user login to the domain , all the authentication and login will be stored in the Radius log. Now we want to configure the same for the windows servers which are not connected to domain. While local administrators and other local users login to the servers , entry should be added to the Radius log.
0
 
LVL 11

Accepted Solution

by:
Tasmant earned 1500 total points
ID: 34887037
I think what you want is impossible to do.
Radius provide a way to authenticate against AD for clients using wifi, or VPN, ie remote access servers or appliance (access points, router ...) which will forward clients credentials to Radius server and gain answer from Active Directory to permit or not the access.

For servers that are not part of the domain, if an user logs on the server using local accounts (either users or administrators), the authentication process is done against the local SAM database, and there is no way to modify this behavior. More, IAS authenticate against AD users accounts (or computers accounts), but as local accounts are not part of AD, how do you want they authenticate?

What you want to do is impossible.
0
 

Author Closing Comment

by:sivark14
ID: 35026286
ok
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question