• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 723
  • Last Modified:

VPN Access w/o Domain Account

Is it possible to log into an SBS 2011 or Server 2012 Essentials server using VPN without a domain user account?
Can they do it with a local account?
0
cliffordgormley
Asked:
cliffordgormley
  • 3
  • 3
  • 2
2 Solutions
 
Rob WilliamsCommented:
There has to be a domain account on the SBS so thy can authorize.  There are no local accounts on a domain controller.  However the remote PC does not need to be a member of the domain.
0
 
JohnBusiness Consultant (Owner)Commented:
I always prefer a hardware VPN box. That way, any authorized person can have VPN access to the network. Server access is then a matter of have a user id and proper credentials.

... Thinkpads_User
0
 
Rob WilliamsCommented:
I would agree a VPN appliance/router is a much better solution from a security, perfomance, and managbility point of view, but I should ask why do you need a VPN.  There are a few reasons but with both of your server options you can access the server, PC's on the LAN, and shared folders using Remote Web Access and SSL, which is built-in and offers security advantages over a VPN.
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
cliffordgormleyAuthor Commented:
This question is an addition to this one here - http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/SBS_Small_Business_Server/Q_28016263.html

Since the users will have various OS's, including various Mac versions, they will have limited functionality with the server. So I'm not entirely sure if they will have Remote Web Access available to them.

So just to confirm. The best option would be a seperate VPN box that would allow them access through User ID and Credentials though it is possible for the remote pc's to access files on the server through VPN w/o them being part of a domain?
0
 
Rob WilliamsCommented:
Looking at the other question, are these local or remote users?  A VPN is used for remote users accessing files.  If so yes any computer can access the server MAC, Linux, Windows home or pro using a VPN.
Every user does need a domain account to access but the PC does not have to join the domain.

In order to use RWA they must be Windows machines, home or pro, as they require Active-X which is not supported in other browsers.

In the other question you mention SBS 2011.  You are aware it will be discontinued in June through all but OEM channels, and those in December?
Server 2012 Essentials does not use Exchange but has better integration with Windows and MAC computers as well as pro of course.
0
 
JohnBusiness Consultant (Owner)Commented:
If you have a VPN appliance, then you can do what you want above.

If you wish to use SBS2011 instead of a VPN appliance, then you need to follow RobWill's approach.  
... Thinkpads_User
0
 
cliffordgormleyAuthor Commented:
Thanks for the answers! I will be looking into both options for the user and actually pushing towards Server 2012 Essentials.
0
 
JohnBusiness Consultant (Owner)Commented:
@cliffordgormley - You are most welcome. I was happy to help and good luck going forward.

.... Thinkpads_User
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now