G
Guest
This message was originally posted at the Win2k RAS Routing grou
We have the following
Win2k3 Enterprise as Stand-alone CA, RRAS configured with L2TP ports RAS only and this box is a member server of an NT 4.0 domain structure (no AD installed)
We are able to use the VPN with computer certificates without problems, but in order to improve security, we would like to use USER certificates instead. When opening the page to request a certificate, the only options are: web browser cert, e-mail cert and adv cert request. There's no user certificate option
We have searched the net to try to find a solution, but almost all of the environments involves AD and ISA server. Most of the articles from TacTeam
Is there a way to use, in an environment like ours, user certificates
From the Win2K RAS Routing group I had the following answer:
" You need to change the setup of the CA to be able to issue the user cert
for authentication
The problem is that I don't know how to change this particular setting. I even tried reinstalling the CA, but at any moment during the installation process, I was able to tell where I could instruct the server to issue user certs
Does anyone out there knows if we have all the pieces in place or it lacks an ISA server, a RADIUS,.... Chances are we are not going to install AD in the near future.
We have the following
Win2k3 Enterprise as Stand-alone CA, RRAS configured with L2TP ports RAS only and this box is a member server of an NT 4.0 domain structure (no AD installed)
We are able to use the VPN with computer certificates without problems, but in order to improve security, we would like to use USER certificates instead. When opening the page to request a certificate, the only options are: web browser cert, e-mail cert and adv cert request. There's no user certificate option
We have searched the net to try to find a solution, but almost all of the environments involves AD and ISA server. Most of the articles from TacTeam
Is there a way to use, in an environment like ours, user certificates
From the Win2K RAS Routing group I had the following answer:
" You need to change the setup of the CA to be able to issue the user cert
for authentication
The problem is that I don't know how to change this particular setting. I even tried reinstalling the CA, but at any moment during the installation process, I was able to tell where I could instruct the server to issue user certs
Does anyone out there knows if we have all the pieces in place or it lacks an ISA server, a RADIUS,.... Chances are we are not going to install AD in the near future.