Could someone please post a known working configuration for this scenario? I had everything working using just VPNGROUP and PASSWORD(shared secret). Now I would like to add NT Authentication but keeps getting failure on client and also Event ID 2 in Event Log on MS 2000 Server. So I’m getting that far. No TechNet on Microsoft on Event Id2. Any Ideas?
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
VPN with PIX 515 and MS IAS Radius Server? 1
- Thread starter mtndew9
- Start date
-
1
- #2
HI.
Please post here the full error message you get on the W2K server event viewer.
The configuration problems are at the W2K server since the pix is passing the authentication to it. You probably have figured that out.
Some tips:
* In the IAS configuration - double click the default policy, then hit the "Profile" button, and enable PAP + CHAP which are disabled by default.
The VPN authentication uses PAP over the encrypted VPN tunnel and therefor the IAS server should allow PAP.
* In Active Directory - don't forget to set the use with "Allow dial-in" permission.
Bye
Yizhar Hurwitz
Please post here the full error message you get on the W2K server event viewer.
The configuration problems are at the W2K server since the pix is passing the authentication to it. You probably have figured that out.
Some tips:
* In the IAS configuration - double click the default policy, then hit the "Profile" button, and enable PAP + CHAP which are disabled by default.
The VPN authentication uses PAP over the encrypted VPN tunnel and therefor the IAS server should allow PAP.
* In Active Directory - don't forget to set the use with "Allow dial-in" permission.
Bye
Yizhar Hurwitz
- Thread starter
- #3
yizhar
I would like to thank you for the quick response. It was exactly what you stated in the IAS Profile. PAP was unchecked. Everything is working fine now. The error was Event ID 2 Response code = 66 The user atempted to use an unauthorize authentication method.
Thank you again,
Chris
I would like to thank you for the quick response. It was exactly what you stated in the IAS Profile. PAP was unchecked. Everything is working fine now. The error was Event ID 2 Response code = 66 The user atempted to use an unauthorize authentication method.
Thank you again,
Chris
- Status
Similar threads
- Locked
- Question
- Locked
- Question