?
Solved

Windows SBS VPN access local recources

Posted on 2012-03-30
5
Medium Priority
?
304 Views
Last Modified: 2012-04-19
Hi there,

i have a Windows SBS 2008 standard network. One remote site with 10 clients is connected over VPN to the SBS server.

The problem i have is, if the VPN fails the clients on the remote network cant even access local shares and the local MYSQL express server. I think it is because they cant authenticate with the domain controller.

My question is, is it possible (without having an RODC) to allow in case that the VPN fails access to the local resources?
0
Comment
Question by:r_i_c_o
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 77

Accepted Solution

by:
Rob Williams earned 1500 total points
ID: 37791278
When the VPN fails they should still be able to log onto their machines using cached credentials, and as a result they should also be able to access local resources, however if DNS is properly configured they  cannot resolve DNS names without the VPN.  Can they access a resource using the IP such as \\192.168.123.123\Share1 ?  This would verify it is a DNS issue and not an AD/authentication issue.  If that is the case you could make use of LMHosts and Hosts files (former for NetBIOS names and latter for DNS names).
https://msmvps.com/blogs/robwill/archive/2008/05/10/lmhosts-and-hosts-files.aspx

The correct solution though, especially with 10 users, is a local DNS server.  It can even be an old 2003 server.
0
 

Author Comment

by:r_i_c_o
ID: 37804498
Thanks Rob for your fast response. I added the computer with the local MSSQL database to the host file on each computer. It seams fine when the VPN only fails for a short time.

Do you know if there is a way to change the frequency of user authentication or extend the time this is valid?

Thanks again for your help.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37808861
Hosts files are valid indefinately, but the question is why is the VPN failing.  That should be a rare occurance with a site to site VPN.
0
 

Author Comment

by:r_i_c_o
ID: 37868629
Thanks Rob,  the VPN is is failing as the modem on the server site sometimes freezes. I will change the hardware to get it a bit more stable. Thanks for your advise.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 37868635
Glad to hear you were able to isolate the problem.
Thanks r_i_c_o
Cheers!
--Rob
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question