Why can't AD users in a trusted domain authenticate to PPTP VPN? - TechRepublic
Question
March 2, 2010 at 10:53 AM
jcmccain

Why can’t AD users in a trusted domain authenticate to PPTP VPN?

by jcmccain . Updated 16 years, 4 months ago

Hi,
Here’s a situation I’ve been trying to resolve for some weeks now:

I have two Active Directory domains with a two-way trust between them. I’ll call them Domain A and Domain B. I’d like users in Domain B to use an Exchange mailbox hosted in Domain A and I’ve configured that successfully. However, the users from Domain B cannot authenticate when they attach to the PPTP VPN server hosted in Domain A. When they try, they receive an Error 930.

I have tried:
?adding the Domain Controllers from Domain B to the RAS and IAS groups in Domain A
?adding the PPTP server to the RAS and IAS server groups in Domain B
?adding Anonymous and Everyone to Domain B’s Pre-Windows 2000 compatible group

The servers involved are:
Domain A:
Windows 2000 Functional level

Server A: Windows 2000 SP4 Domain Controller and RRAS server
(accepts PPTP connections)
Server B: Windows 2000 SP4 Domain Controller
not Server C: Windows 2003 Domain Controller

Domain B:
indows 2000 Functional level
All DCs are Windows 2003

Any help is appreciated!

Thanks
Jesse

This discussion is locked

All Comments