• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 242
  • Last Modified:

RADIUS ISSUE - DIMMED OPTION QUERY

Hi ive been following instructions to setup on my win 2003 server dc a radius server which was straight forward but the part im stuck on is:

Windows Server 2003:  For Windows Server 2003, user permission is specified in the Remote Access Policy that is configured in the Internet Authentication Service.  As shown above! For Configuring Remote Access Policy.

1. Right click on a user and select Properties. The User Properties window opens.
2. In the Dial-In tab, select the "Control access through Remote Access Policy" radio button in the Remote Access Permission (Dial-in or VPN) section.  - but this option is dimmed out! why?
0
mikey250
Asked:
mikey250
  • 4
1 Solution
 
Rahul AgarwalTeam LeaderCommented:
If “Control Access through Remote Access Policy” is grayed out then your domain functional level is probably set to Windows 2000. To enable it, right click on your domain name in Active Directory and select Raise Domain Functional Level. Choose Windows 2003 from the drop down list and press Apply. Once you are done, you will be able to select “Control Access through Remote Access Policy”.

Note: Before raising the Domain functional level check if your network has any NT based servers and/or Win 95/98 based clients. Once you raise the functional level to 2003 Native mode these machines wont connect and you wont be able to go back to Windows 2000 Level.
0
 
mikey250Author Commented:
hi just switching my server on now to check, but when i install everything i always install server as win 2003 as have no win 2000 components!
0
 
mikey250Author Commented:
nope know other machines except win 2003 configured exactly the same although just a standalone server, so presumably i should raise domain functional level the same way as have no intention of using nt based servers win 95/98.  Not that i am using them because i am not, but presumably vista, xp & win 7 is ok?
0
 
mikey250Author Commented:
the reason for asking my main question is because ive setup radius server on the same master dc, and installed and followed instructions which continued on from radius for IAS.

the thing that confused me was that i found some instructions about configured remote policy for win 2003 but the instructions weren't exact but realised it was because i did not install 'Routing & Remote Access' and then the instructions look straight forward, although ive stopped at this point!!!...

ive just checked and you were right it was set to win 2000, how it that so?
0
 
mikey250Author Commented:
yes - the option "Control access through Remote Access Policy" - is no longer dimmed and as per instruction i accessed IAS and right clicked the 'remote access policy' i created earlier specific for 'radius' and selected 'grant remote access permission'.

I know i never mentioned this below in my main thread but this is what im trying to do!!

although my client pc is plugged into the local switch im assuming this will not be a problem?

as i have configured the radius/ias/remote access policy correctly - i think!!! - im assuming if i was a remote user it would now allow that user to logon ?

one thing is puzzling me, im thinking i need to ALSO activate 'Remote Routing Access' for VPN as when a user logs on it will be the VPN that the connection travels through in-conjunction with the above configurations?

when  a user logs on will i be able to check or see something to know it was configured correctly?
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now