Watchguard PPTP VPN using Microsoft NPS as Radius with Smart Card auth
Posted on 2011-10-04
We have configured a Watchguard PPTP vpn solution that uses RADIUS (Windows NPS) to authenticate users. I now want to be able to integrate smart cards into this solution using the EAP Smart Card authentication provided in NPS. We have RAAK smart cards that use the windows base crypto package and they are working great to allow users to login to their computers.
However, when I try to configure NPS to use these for authentication and configure the client to use the smart card, I get "Error 628: The connection was terminated by the remote computer before it could be completed." when I try to login. I am prompted to insert my smart card and pin and receive the error message shortly after the "verifying username/password" phase. If I switch back to using username/password credentials from the same machine with the same connection, it works just fine.