RE: Integrating Domain and VPN Login

From: Ryan Kubiak (rkubiak_at_btc-bci.com)
Date: 04/06/05

  • Next message: Wes DiBlasi: "RE: Windows Server 2003 Service Pack 1"
    To: "Ryan Gravlin" <RGravlin@newvision-inc.com>, <focus-ms@securityfocus.com>
    Date: Wed, 6 Apr 2005 08:37:53 -0400
    
    

    More than likely I was misinformed and these machines are not actually
    joined to the domain. I'll have him join these machines and see if that
    fixes it. Thanks!

    -----Original Message-----
    From: Ryan Gravlin [mailto:RGravlin@newvision-inc.com]
    Sent: Tuesday, April 05, 2005 3:14 PM
    To: Ryan Kubiak; focus-ms@securityfocus.com
    Subject: RE: Integrating Domain and VPN Login

    Not really sure what to tell you on this. There's only 2 reasons why it
    wouldn't be showing up as far as I know:

    1) the machine is not joined to the domain
    2) the options button has been pushed and hides domain drop-down &
    dial-up connection checkbox

    I've done very little RRAS stuff so I wouldn't be able to elborate on
    that. Hope this helps!

    Thanks,
    Ryan Gravlin

    New Vision Consulting, Inc.

    -----Original Message-----
    From: Ryan Kubiak [mailto:rkubiak@btc-bci.com]
    Sent: Tuesday, April 05, 2005 12:09 PM
    To: focus-ms@securityfocus.com
    Subject: RE: Integrating Domain and VPN Login

    Is there any reason that check box would not be available on these
    machines?
    They were previously at the same location as the domain controller and
    were joined to the domain at that time.

    -----Original Message-----
    From: Ryan Gravlin [mailto:RGravlin@newvision-inc.com]
    Sent: Tuesday, April 05, 2005 9:43 AM
    To: Ryan Kubiak; focus-ms@securityfocus.com
    Subject: RE: Integrating Domain and VPN Login

    This can be accomplished through the check box that says 'Logon using a
    dial-up connection' at the logon screen. This can also include a VPN
    profile.

    There are other ways of accomplishing this too. CheckPoint's SecuRemote
    has a secure domain logon feature, which basically halts the process of
    authenticating with the domain controller until it has established a VPN
    connection with the site. It shoots the authentication over the
    encrypted tunnel and continues to login using the lmhosts and hosts file
    for static mappings.

    I hope that helps.

    Ryan Gravlin

    New Vision Consulting, Inc.

    -----Original Message-----
    From: Ryan Kubiak [mailto:rkubiak@btc-bci.com]
    Sent: Monday, April 04, 2005 9:59 AM
    To: focus-ms@securityfocus.com
    Subject: Integrating Domain and VPN Login

    I'm trying to find a way to integrate a login to a VPN with a domain
    login.
    Users at a remote office currently login using a cached profile then
    manually start a VPN connection using the client included with XP Pro.
    These machines are then authenticating to the Windows 2000 server at the
    central office. I know in NT4 there was a check box for dial up
    authentication to a domain, however is there anything similar to this
    for XP to allow seamless integration of these two logins? I tried
    setting the VPN to login using the Windows credentials and putting a
    shortcut in the startup folder, however the VPN connection does not
    start that way for some reason.

    Ryan

    ------------------------------------------------------------------------

    ---
    ------------------------------------------------------------------------
    ---
    ------------------------------------------------------------------------
    ---
    ------------------------------------------------------------------------
    ---
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------
    

  • Next message: Wes DiBlasi: "RE: Windows Server 2003 Service Pack 1"