Solved

Still Need Password To Connect To Network Drives, After VPN In

Posted on 2013-12-06
4
604 Views
Last Modified: 2013-12-06
We use a Windows 2003 Server with RRS configured as VPN server. After VPNed in from PCs (Windows XP & Windows 7), we still need to enter password to connect to network drives. Is there a way to fix this so that users don't have to enter password for network connection?
0
Comment
Question by:stillsyra
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 500 total points
ID: 39702175
If they are logging into the PC first, it's using a cached domain credential, and not authenticating to the domain. So the user is logged in the PC, they then VPN into the office/work using their domain/pass, that does not create a login credential (token), it only serves as an authentication attempt against one service (VPN).
For it to work how you envision, the VPN connect to work has to be there first or part of the users login process. That means a modified GINA or another way to establish the connection to work so that when the user logs into the computer the domain can give them an authentication credential.
Citrix or Terminal Services are often good ways to do this, windows 7 and later also have the DirectAccess "VPN", takes a lot of setup and works using IPv6 (you cna tunnel ipv4)

Cisco's VPN client allowed you to connect to the VPN first and then login the computer. it modified the Gina so that you'd only have to input the user/pass once. And it looks like the new version (anyconnect0 does too
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809f0d75.shtml

-rich
0
 

Author Comment

by:stillsyra
ID: 39702336
Rich, thanks for the repsonese. We don't use Cisco, but Windows Server RRAS for VPN. The desktops/laptops used for vpn access are not domain computers.

Users need to first log into the computers, then connect to vpn, and then connect to the network drives. It looks like we don't need to re-enter the passwords on some machines, but have to on others. I don't see any configuration difference among the computers though.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 39702351
If they aren't domain joined then i can't see how it's working for some and not others, it probably shouldn't work for any. Some drives may be connected to the same server so perhaps that's why? A machine only needs to authenticate to a server once for the user (with proper permissions) to access all drives on that server.

-rich
0
 

Author Comment

by:stillsyra
ID: 39702362
Thanks!
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question