Welcome to ISAserver.org

ISA and RADIUS

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA Server 2004 General ] >> General >> ISA and RADIUS

Page: [1]

Message

<< Older Topic Newer Topic >>

ISA and RADIUS - 17.Sep.2006 1:51:51 PM

nnmmss

Posts: 96
Joined: 30.Nov.2004
Status: offline

I want all users in LAN be authenticated via a RADIUS (IAS) which is located on the same server which ISA is.so i did:

1- Install and Config IAS in tempserver
a-add new client
b-add new policy for windows -group i need also the athuentcaion of PAP

2-In ISa Management,in Define RADIUS server i defined the RADUIS server with all information is needed for it.
3- in Firewall policy all AUthenicated users from internet can access to internet .
4- also i have set the internal network should be authenticated from RADUIS server (which i am not sure about the properties in this section)

any way, now from the internet explorer of a client i have set the tempserver as a proxy and when i watn to access internet , it doesn't accept my password.
access could be possible if i set authentication type to Integrated but with RADIUS. i couldn't get any information from the ISA log, any idea to check the case?

Thanks

Post #: 1

Featured Links*

RE: ISA and RADIUS - 17.Sep.2006 2:16:30 PM

tshinder

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline

Hi N,

Join the ISA Firewall to the domain for a more secure configuration.

Also, you must not install the RADIUS server on the Firewall.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to nnmmss)

Post #: 2

RE: ISA and RADIUS - 17.Sep.2006 2:58:12 PM

nnmmss

Posts: 96
Joined: 30.Nov.2004
Status: offline

ok,thanks

< Message edited by nnmmss -- 17.Sep.2006 3:56:24 PM >

(in reply to nnmmss)

Post #: 3

RE: ISA and RADIUS - 4.Oct.2006 12:03:19 PM

nnmmss

Posts: 96
Joined: 30.Nov.2004
Status: offline

ok I just seperated RADIUS from ISA now i have
1- server1 with ISA and VPN Enabaled (Authentication from RADIUS)
2- server 2 with IAS Installed and linked to server1
3- RADIUS server in ISA is defined
4- I have set up that Authentication should be done from RADIUS
but when i make a VPN Connection ,it cann not verify username and password and says "The Connection time out and waiting for a valid response from the remote omputer".
and in Event viewer i get
Event id:20073
Sourec : Remoteaccess

"The following error occurred in the Point to Point Protocol module on port: VPN2-9, UserName:nnmmss. The authentication server did not respond to authentication requests in a timely fashion. "

if i set up in RRAS and ISA that authnetication should be done by windows and not RADIUS , the VPN connection can be established. but if the Radius Authentication is needed and also IAS is on another server i get the above error.
why i can't

(in reply to nnmmss)

Post #: 4

RE: ISA and RADIUS - 8.Oct.2006 12:27:00 PM

tshinder

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline

Is the message authenticator enabled?

Also, make sure to join the machine to the domain to increase security.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to nnmmss)

Post #: 5