Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

contivity 1010 and Win2K AD authentication

Status
Not open for further replies.
peterve

peterve

IS-IT--Management
Mar 19, 2000
1,348
NL
Hi,

how can I authenticate my remote users using Windows 2000 Active Directory Ldap ?
Does anyone have a step-by-step guide for this ?
(Someone told me I need to set up a IAS server and use that as Ldap proxy... any insights or help would be greatly appreciated)


--------------------------------------------------------------------
--------------------------------------------------------------------
How can I believe in God when just last week I got my tongue caught in the roller of an electric typewriter?
---------------------------------------------------------------------
 
Sort by date Sort by votes
Here is the step-by-step guide I found on the Nortel site....

I was trying to setup the Win2k IAS server, and all remote VPN clients were sucessfully authenticated from IAS ONLY when they are using PPTP windows client to connect. I followed most of the help instruction and still couldn't make the contivity box and the IAS to authenticate any IPSec nortel vpn clients for some reasons.

The next step I will skip the IAS authentication, and follow the above documentation to use LDAP proxy authentication instead.
 
Upvote 0 Downvote
I just fixed the issue I had earlier with IAS. After I add the authentication method for PAP on IAS, the Nortel IPSec clients are now able to connect and get authenticated by IAS via the Active Directory.
 
Upvote 0 Downvote
is that based on external ldap or Radius ?


--------------------------------------------------------------------
--------------------------------------------------------------------
How can I believe in God when just last week I got my tongue caught in the roller of an electric typewriter?
---------------------------------------------------------------------
 
Upvote 0 Downvote
I managed to getthe IAS server up, and RADIUS authentication against AD going. To do it, I:

1. Installed IAS on the AD domain controller
2. In the IAS MMC snap-in, created a RADIUS client for the nortel device. I set the secret here on the windows side.
3. Created a remote access policy in the IAS snap-in which checks for membership in the group "remote vpn users".
4. Under connection request policies, created a new connection request policy with a custom policy condition of NAS-IP equals the IP of my nortel device.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

UnderTheBusAsUsual
  • Question
Avaya IPO with OneCom and Gamma SIP trunks
Replies
1
Views
314
Firebird Scrambler
Firebird Scrambler
Michel$
  • Question
hi guys, After upgrading System Manager Communication Manager and Session Manager versions 8.1 to 10.2 SIP device phones display the error message "n
Replies
0
Views
245
Michel$
Michel$
Sah219
  • Question
add third group
Replies
0
Views
986
Sah219
Sah219
R Wills
  • Locked
  • Question
Avaya Site Admin for MAC's on Avaya 8710
Replies
0
Views
102
R Wills
R Wills
manjupatil
  • Locked
  • Question
How to find AVP IP address from CM CLI/Web
Replies
1
Views
165
biglebowski
biglebowski

Part and Inventory Search

Sponsor

Back
Top