Re: IPSec
- From: "Steve Riley [MSFT]" <steve.riley@xxxxxxxxxxxxx>
- Date: Thu, 13 Sep 2007 19:54:22 -0700
Wow. Whoever is telling you this must be on some really good drugs! Non-domain computers cannot do any kind of Kerberos communications at all.
--
Steve Riley
steve.riley@xxxxxxxxxxxxx
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com
"John" <John@xxxxxxx> wrote in message news:OXuv6ol9HHA.4584@xxxxxxxxxxxxxxxxxxxxxxx
That's what I thought.
I've been told that creating a IPSec policy and configuring that IPSec policy in some servers in domain using only AH (Authentication Header) using Kerberos authentication would work for comunication witrh XP machines not members of the domain.
Does this sounds correct for you?
Thanks for your time.
"Brian Komar" <brian.komar@xxxxxxxxxxxxxxxxx> wrote in message news:e3YqWZa9HHA.2752@xxxxxxxxxxxxxxxxxxxxxxxNot going to work. Computers in a workgroup do not do Kerberos
Your only two choices are shared secret or certificates
Why are certificates not an option?
Brian
"John" <John@xxxxxxx> wrote in message news:uRj9nzY9HHA.1188@xxxxxxxxxxxxxxxxxxxxxxxHi everyone,
Is it possible to make a computer in a workgroup to "talk" with a server/computer that belongs to a domain using IPSec.
I'm not talking a bout VPN, both machines are in the same physical network and authentication using certificates isn't a option, so all I can use is Kerberos.
- Follow-Ups:
- Re: IPSec
- From: John
- Re: IPSec
- Prev by Date: Re: IPSec
- Next by Date: Re: Local Logon Access to Production Servers
- Previous by thread: Re: IPSec
- Next by thread: Re: IPSec
- Index(es):
Relevant Pages
|
|
