[ previous ] [ next ] [ threads ]
 
 From:  "James W. McKeand" <james at mckeand dot biz>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] RADIUS client PHP
 Date:  Wed, 29 Sep 2004 15:32:44 -0400 
I used the same instructions with I setup RADIUS authentication on my PPTP
VPN - my IAS is on my SBS 2003 (I followed the AD instructions). For kicks,
I just ran threw the instructions on a stand-alone Windows 2003 server that
is not a member of my AD domain. Just a couple of details for the less
inexperienced in the crowd.

Create a local user group in Local Users and Groups (Right click on My
Computer -> Manage). Add local users to this local group.  (These are the
common sense non-AD replacements) Don’t forget to grant "allow dial-in" for
the individual users in the group.

If your IAS is not a member of a AD domain - the "Register Server in Active
Directory" will be grayed out.

When creating the RADIUS Client - use the IP of the m0n0. If the IAS is on
your LAN use the LAN IP of your m0n0.

When you go to enter the shared secret and you forgot what you put on the
m0n0 - look at your config.xml the secret is in clear text. (At least it is
with my PPTP VPN - should this be addressed?)

FYI, here is the direct link:
http://www.michael-i.com/files/projects/m0n0ad/index.php bypassing the m0n0
docbook.

Some times you have to point out the obvious.

_________________________________
James W. McKeand


-----Original Message-----
From: Robert Staph [mailto:rstaph at digitalimpreza dot com] 
Sent: Wednesday, September 29, 2004 2:21 PM
To: m0n0wall at lists dot m0n0 dot ch
Subject: Re: [m0n0wall] RADIUS client PHP

http://m0n0.ch/wall/docbook/otherdoc.html#id2592742

Use the Active Directory instructions and use the common sense non-AD
replacements for each window and don't register the service with AD.  Done.

-Rob

----- Original Message -----
From: "Axel Eble" <axel dot eble at gmail dot com>
To: <m0n0wall at lists dot m0n0 dot ch>
Sent: Wednesday, September 29, 2004 2:08 PM
Subject: Re: [m0n0wall] RADIUS client PHP


On Wed, 29 Sep 2004 19:36:12 +0200, Kay Konrad <maillinglist at city dash box dot de> 
wrote:
> Mitch (WebCob) schrieb:
>
> >Would be nice if anyone knows of existing how-to's - Microsofts own
> >"planning and implmenting a structured...." notes are a little 
> >exhaustive.
> >
> >Would be a good thing to add to the wiki / doc project
> >
> >m/
> >
> >
> I'm using the Microsoft IAS "Service", it's really easy to setup.
[instructions deleted]

Kay, would you please add this to the Wiki?

TIA,

Axel


-- 
Axel Eble, CISSP * Trienter Str. 6b * 87437 Kempten (Allgäu) * Germany
VoIP: 8002887 at sipgate dot de * cell: +49.178.285-3265

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch



---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch