NT and VPN: Chicken and egg problem?
Jon Carnes
jonc at HAHT.COM
Thu Dec 16 12:01:35 EST 1999
Actually, there is a check box (after you install RAS access on an NT
machine) in the log on screen that asks if you are logging on via dial-up.
The dial-up can be either via phone or VPN. You use this for access to the
local machine using your credentials stored on the remote network.
Hope that un-puzzles you!
Jon Carnes
MIS - HAHT Software
----- Original Message -----
From: "Andreas Haug" <ajh at THIS.NET>
To: <VPN at SECURITYFOCUS.COM>
Sent: Wednesday, December 15, 1999 5:51 AM
Subject: NT and VPN: Chicken and egg problem?
> First of all I'm sorry for asking such a basic question, but since nobody
(read: no vendor) could point me to a solution... Anyway, here it goes:
>
> Most Windows NT VPN products use some Program to establish the VPN. To use
this program, one has to be logged into the machine. Now, what if the user
has to log into the domain which is "behind" the VPN because his user
credentials are stored there? He can't log in because the VPN isn't running
and he can't establish the VPN because he can't log in.
>
> The simple solution would be to (a) have NT cache the login information,
which would mean to put the machine on the CN once and have the user log in,
or (b) to create a local account for the user. I don't like any of them.
>
> Sincerely puzzled,
>
> Andreas Haug
> --
> HOME ajh at this.net http://this.net/me Phone +49 7127 972454 Fax
972451
> NEW PGP Key 3/99 www.keyserver.net
9EBB4647C7741CE3ADE112B7B82995DAE4F0CD75
>
> VPN is sponsored by SecurityFocus.COM
VPN is sponsored by SecurityFocus.COM
More information about the VPN
mailing list