VPN Quarantine Policy

  • Thread starter Thread starter dpower
  • Start date Start date
D

dpower

Hi,
With a VPN quarantine policy set up, what is supposed to stop non-quarantine
profile clients from attaching. Isn't there a RRAS server setting that would
stop someone from creating their own client side VPN connection, thus
bypassing the whole quarantine policy?

Thanks
 
When you create your quarantine, you add the name of an AD group. So the
Quarantine policy will happen only if you are member of this group.

This way, no mater the VPN client you use, you must authenticate... and the
RRAS service or ISA 2004 knows who you are and so use the corresponding
policy.

Hope this helps.
 
thanks that helped. also, biggest thing is to make sure all servers are
running 2003 and not 2000!
 
Back
Top