Solved

Authenticarte non domain servers through IAS RADIUS

Posted on 2011-02-10
4
535 Views
Last Modified: 2012-05-11
Have already configured the IAS RADIUS in domain and registed the IAS in AD. Now I want to all the rest of the servers which are not connected in domain , should authenticate through IAS.
0
Comment
Question by:sivark14
  • 2
  • 2
4 Comments
 
LVL 11

Expert Comment

by:Tasmant
ID: 34869943
Please, could you describe better what you want to achieve, because for the moment it is really unclear.
0
 

Author Comment

by:sivark14
ID: 34885933
Hi, We have configured the IAS Radius in windows server 2003 for VPN clients and we have registered it to the AD. While VPN user login to the domain , all the authentication and login will be stored in the Radius log. Now we want to configure the same for the windows servers which are not connected to domain. While local administrators and other local users login to the servers , entry should be added to the Radius log.
0
 
LVL 11

Accepted Solution

by:
Tasmant earned 500 total points
ID: 34887037
I think what you want is impossible to do.
Radius provide a way to authenticate against AD for clients using wifi, or VPN, ie remote access servers or appliance (access points, router ...) which will forward clients credentials to Radius server and gain answer from Active Directory to permit or not the access.

For servers that are not part of the domain, if an user logs on the server using local accounts (either users or administrators), the authentication process is done against the local SAM database, and there is no way to modify this behavior. More, IAS authenticate against AD users accounts (or computers accounts), but as local accounts are not part of AD, how do you want they authenticate?

What you want to do is impossible.
0
 

Author Closing Comment

by:sivark14
ID: 35026286
ok
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
This article is the result of a quest to better understand Task Scheduler 2.0 and all the newer objects available in vbscript in this version over  the limited options we had scripting in Task Scheduler 1.0.  As I started my journey of knowledge I f…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question