[ previous ] [ next ] [ threads ]
 
 From:  "Jason Dwyer" <jason dash dwyer at oxfordfunding dot com dot au>
 To:  "Curt Shaffer" <cshaffer at gmail dot com>, <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] Radius Authentication
 Date:  Fri, 20 Aug 2004 09:24:01 +1000
The way I have set it up, RADIUS is talking direct to Active directory,
so the issue is if you don't want to use the same accounts (personally I
can't see why not) then you will need to redo permissions and groups in
order to access resources.

Cheers

Jason

-----Original Message-----
From: Curt Shaffer [mailto:cshaffer at gmail dot com] 
Sent: Friday, 20 August 2004 8:00 AM
To: m0n0wall at lists dot m0n0 dot ch
Subject: [m0n0wall] Radius Authentication

I had a quick question for anyone out there running a windows network
behind m0n0. I have a multi site ipsec VPN set up and it is working
great! The DC's are talking happily, the SQL is replicating happily,
and DFS is working like a dream. Now I have the need to let some
people in from home to run an application. Some are on dial up, some
on cable,dsl etc. All different OSes from 98 to Macintosh. I only have
10 people that need in, so I want to keep it as administratively
simple as possible (Mostly meaning that I don't want to have to put
m0n0's at everyone's homes). So I was going to have them log in with
PPTP to the m0n0's. I don't want them to use the same UN's and
passwords as they do in the office, but I don't want them to have to
re authenticate to access drives and such. My question is: If I have
the PPTP from the m0n0 authenticate against the Radius on the servers,
are those users considered authenticated users in the eyes of windows
so that I can set the permissions on files/folders with the
authenticated users group so they will not have to authenticate again?
Thanks for all of your help

-- 
Curt Shaffer, MCP
Wireless/Network Specialist
Chilitech Internet Solutions
www.chilitech.net
866-678-6858
efax: 1-309-412-4809

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch