Link to home
Start Free TrialLog in
Avatar of Alan Bateman
Alan BatemanFlag for United Kingdom of Great Britain and Northern Ireland

asked on

SSTP VPN Windows Server 2019

Cannot get Windows Server 2019 SSTP VPN authentication to work. I have set up Windows server 2019 Std on a small ProLiant Microserver straight out of the box. I have installed ADDS, IIS and RRAS , and got a working SSL certificate bound to default website (from LetsEncrypt). I have setup 20 SSTP ports with their own static IP address pool . I am using Windows Authentication (have not installed NPS) and have selected MSChap v2 as a valid authentication protocol.  When I try to connect to this server via this VPN it appears to connect and then immediately fails authentication. It clearly refuses to accept my username and password for the domain (despite that username being an enterprise and domain administrator ).  I have a very similar setup working with a couple of other customers elsewhere but this one just will not work. I have selected Allow Access on the user profile.  Is there something else I've missed?  Something that authorises users to be able to connect to the domain via VPN??
ASKER CERTIFIED SOLUTION
Avatar of Alan Bateman
Alan Bateman
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Rob Williams
I did not have a definitive answer for you but was following. Thanks Alan for posting your solution.  I was very curious.  I haven't configured SSTP for quite a while but I believe NPS and a policy have been required since 2012 for both SSTP and L2TP, and possibly even PPTP.  Good to know. Thanks again.