Authentications Protocols

[Guest]

IPsec uses the Preshared Key, CA and Kerberos for authentication
RRAS uses PAP, CHAP,MS-CHAp v1 e v2 ......

But what authentication protocol will be used when a remote client computer using L2TP/IPsec attempt to make a connection

Thanks

 

[Steven L Umbach]

L2tp uses ipsec/esp for data encryption but will use certificate authentication for
"machine" authentication though with XP Pro/W2003 it is possible to use preshared key
which is really recommended for testing as the preshared key is stored in clear text
on the computer.

For "user" authentication in l2tp can use the chap/maschap/mschapv2/certificate/smart
card. These days it does not make sense to use less than mschapv2 for user
authentication especially for those using pptp. --- Steve

http://tinyurl.com/34epr --- great link to W2003 Server Deployment Kit on VPN.

IPsec uses the Preshared Key, CA and Kerberos for authentication.
RRAS uses PAP, CHAP,MS-CHAp v1 e v2 .......

But what authentication protocol will be used when a remote client computer using

L2TP/IPsec attempt to make a connection ?