AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of higginsk24
higginsk24
 asked on

Routing for RRAS/VPN client

With have configured an IKEv2-based VPN using RRAS. I would like to deploy the VPN profile via group policy with the required static routing. From what I can see, the only place to set static routing is at the user level in Active Directory. Is there any way to accomplish this when using machine certificate authentication for IKEv2?  Right now, the VPN profile is deployed correctly, however, routes need to be added each time the user connects. Any assistance that can be provided would be greatly appreciated.
Windows NetworkingVPN
Avatar of undefined
Last Comment
DLeaver
8/22/2022 - Mon
SOLUTION
DLeaver
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
higginsk24
ASKER
If I use CMAK, is there any what to allow it to connect at startup?
DLeaver
Once it is deployed it should be just a case of adding the VPN icon to the start up folder through explorer.

If you want to connect silently you will need to ensure credentials are remembered and there are no options prompt for user input
higginsk24
ASKER
It is using machine certificate authentication so there are no user credentials. Would that still work?
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
DLeaver
Provided the certificate is deployed to the machine then it should be fine (better if anything), its just the VPN icon of the VPN that is created that would need to be moved to the start up folder

CMAK will create the VPN on the computer and any associated scripts will be kept on that computer in a CMAK folder.
higginsk24
ASKER
So I added the VPN icon to the startup folder but it wont connect automatically.  I have to launch the icon and then hit "connect" before it will establish a VPN connection.  Is there any other way to force it to connect at boot?
DLeaver
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
higginsk24
ASKER
No luck with that either...must be something to do with CMAK deployments. Any other suggestions or workarounds that you may know of?
ASKER CERTIFIED SOLUTION
DLeaver
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent