Urgent VPN Server with l2tp/ipsec help!

[Guest]

I have a 2003 std server configured with RAS on a DMZ port. I'm trying to
secure my vpn since were using pptp without any problems. I have a CA server
and obtain certificates on both end with preshare key. Client is Winxp sp2
and I followed the step by step instructions and not sure where to go next.
The error I'm getting is 741 "local computer does not support the required
data encryption type". If I set the server authentication method to none,
then it connects. I'm sure its my authentication settings. Please help
since I'm stuck with this problem for a week now... Thanks in advance!

 

[mike menard]

do you have a firewall or other nat device in 'front' of you rras server?

 

[Guest]

Not when its on a DMZ port. Its directly available through the public
without NAT.

 

[Puja Pandey[MSFT]]

Authentication settings can be done at 2 places on the server, RAS Server
propeties and Remote Access Policies. On the client you can set the
authentication and encryption type on the connectoid by going to the
connectoid properties -> Security tab -> Advanced settings. Make sure your
encryption type on the client matches with the encryption type of the Remote
Access policy on the RAS server and Authentication type on client matches
with Auth type selected on the RAS server properties and Remote Access
Policy.