Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 236
  • Last Modified:

Trying to login to 2008 DC after connecting with Sonicwall VPN client

Not sure if there is a another workaround for this, but have a user who needs access to our remote server, they are with another company on a different windows domain.  After connecting through Sonicwall VPN client I can connect to the DC provided my laptop (which is just part of a workgroup) login/password are duplicated on the DC.  Do I need to get their login/password and then create an account on our domain to match or is there another solution.
0
Webcc
Asked:
Webcc
  • 3
  • 2
  • 2
1 Solution
 
brokenbyteCommented:
Does this mean that your DC is also your remote server, and they are connecting to it directly?

What exactly do they need access to? There might be a better way to skin this particular cat.
0
 
WebccAuthor Commented:
Correct.  They need to share files including a QuickBooks file.  Wish we had the budget for server just for filesharing or another computer to connect to first with RDP or LogMeIn.
0
 
DLeaverCommented:
Risky to open your DC up like this but I understand the difficulties when trying to manage budgets with best practice.

The connection method you have outlined is fine, creating an account in AD such as 'contractor' and consider the permissions you assign-the bare minimum would be advisable.
0
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

 
WebccAuthor Commented:
Has to match their local login account to the domain account - correct?
0
 
DLeaverCommented:
I see what you're trying to do, as setting it this way will trick the DC into allowing the user access without re prompting for credentials

However I don't recommend it, instead just get the user to map the network drive with the alternate credentials of the new user you have created (connect using different credentials)
0
 
WebccAuthor Commented:
That's what I was trying to do, but would not accept alternate credentials?
0
 
brokenbyteCommented:
Have you tried using the 'net use' command to map the drive?

The syntax is as follows:

NET USE
[devicename | *] [\\computername\sharename[\volume] [password | *]]
        [/USER:[domainname\]username]
        [/USER:[dotted domain name\]username]
        [/USER:[username@dotted domain name]
        [/SMARTCARD]
        [/SAVECRED]
        [[/DELETE] | [/PERSISTENT:{YES | NO}]]

so I think you'd need something like the following:

net use z: \\server\share password /USER:domainname\username

Let us know if that helps.

And are you sure that you don't have a spare PC lying around somewhere that you have have them log on to via RDP or Logmein? It's just such a risk to open your system up like you are.
0

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

  • 3
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now