General discussion

Locked

VPN Domain Authentication

By Dflo ·
I VPN from home (WIN2KPRO BOX) to my Network wich is NT 4.0 SP6a. I checked the "Include Windows Logon Domain" box for the client. I include the domain name on the logon dialog box. When i connect thru VPN all my logon allows me to do is connect. I cannot pass any credentials. To connect to any machine I have to supply local admin and password of that machine.

Why doesn't the VPN connection pass my logon credentials (token) as if I were physically at the network.

Thanks in advance for your help

-Danny

This conversation is currently closed to new comments.

8 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

VPN Domain Authentication

by jcox303 In reply to VPN Domain Authentication

Have you checked allow access to entire network in RAS for VPN?

Collapse -

VPN Domain Authentication

by Dflo In reply to VPN Domain Authentication
Collapse -

VPN Domain Authentication

by NetTek In reply to VPN Domain Authentication

"Include Windows Logon Domain" under the Options tab is for when you are logging onto a Windows 2000 domain, and does not apply to NT 4 VPNs. You need to uncheck this box. The same goes for "Automatically use my windows logon name and password..."under the Security tab.

As far as passing credentials, there are two stages of authentication: interactive and network. These are not the same if you are not logging onto your box with the same username, password, and domain name of your network. (i.e., you are logging onto only the local computer). In this case, you will be prompted for authentication each time you access a resource.

To access the NT 4 network, log onto the machine as if you were logging onto your LAN. (You will get the"unavailable messages"). These credentials are cached, and will pass once you connect to the VPN.

Collapse -

VPN Domain Authentication

by Dflo In reply to VPN Domain Authentication

So the machine would initially have to be set up on the LAN, right. Or else how could you join the domain without being connected to the PDC.

Collapse -

VPN Domain Authentication

by Dflo In reply to VPN Domain Authentication

Yes the "Access Entire Network" is selected.

Collapse -

VPN Domain Authentication

by NetTek In reply to VPN Domain Authentication

You have to have a valid user account on the NT 4 domain, and your machine must join the domain. You will then have two accounts on your local PC that can authenticate you on your local PC before you connect to the VPN: DOMAIN_NAME\USERNAME and LOCAL_PC_NAME\USERNAME. However, only the DOMAIN_NAME\USERNAME local account will pass credentials to an NT 4 domain controller.

Collapse -

VPN Domain Authentication

by Dflo In reply to VPN Domain Authentication

Poster rated this answer

Collapse -

VPN Domain Authentication

by Dflo In reply to VPN Domain Authentication

This question was closed by the author

Back to Windows Forum
8 total posts (Page 1 of 1)  

Related Discussions

Related Forums