Question concerning Remote Access Authentication with IAS

S

Steve Upp

Folks,

I'm interested in learning how and if IAS supports the ability to perform
RADIUS CHAP (V1 or V2) authentication of a client who is part of a Windows
Domain.


My true purpose in asking this is that I want to create an application on a
non-windows based server that interacts with a client that is part of a
Windows Domain and I want to authenticate this user against the Active
Directory of users. Assume that the client application obtains the user's
domain information via a prompt of the user;

Login: <domain\user>
Password: <passwd>

Is the User-Name set to DOMAIN\User? Assuming that the client is challenged
with the CHAP Challenge from the IAS can my server (NAS) authenticate this
user with IAS?

Thanks much
Steve
 
H

Herb Martin

Steve Upp said:
Folks,

I'm interested in learning how and if IAS supports the ability to perform
RADIUS CHAP (V1 or V2) authentication of a client who is part of a Windows
Domain.
Click to expand...

I have never heard it called "RADIUS CHAP" as CHAP preceded
RADIUS by quite some time in common use.

Windows clients and IAS certainly support CHAP but I don't
know of it making any distinction between V1 and V2.

They certainly support MS-CHAP V1 and V2.
My true purpose in asking this is that I want to create an application on a
non-windows based server that interacts with a client that is part of a
Windows Domain and I want to authenticate this user against the Active
Directory of users. Assume that the client application obtains the user's
domain information via a prompt of the user;

Login: <domain\user>
Password: <passwd>

Is the User-Name set to DOMAIN\User?
Click to expand...

Yes. Or separately in the dialogs and combined by the
authenticating client software.
Assuming that the client is challenged
with the CHAP Challenge from the IAS can my server (NAS) authenticate this
user with IAS?
Click to expand...

Yes, in general. If you can get a NAS-RADIUS-client to make the
RADIUS request of the IAS-RADIUS server then it (the IAS) can
request authentication from the AD.

That is what IAS does mostly.

BTW, this isn't really an AD question so although there is nothing
wrong with asking it here, you might do better in one of the programming
groups (maybe RRAS, but I am betting programmer groups will help
you more.)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

IAS, RAdius and AD 1
RADIUS, IAS, and WiFi Authentication 2
Problems with IAS after Exchange 2003 upgrade 1
IAS with CA 2
IAS (RADIUS) and Cisco VPN client 0
IAS and RADIUS Authentication 2
VPN and RADIUS question 1
Upgrade to Windows 2003 Domain ?? 1

Top