Certificates for l2tp VPN

I

izael

Hi everyone, Could somebody help me to install computer certificates
for l2tp vpn connections?

I want to instal l2tp VPN certificates to a server and a computer
from a Win2000 Enterprise Root CA. I want to do it using the web page
request method, since we want only some computers to have certificates
installed. But in the web page, the Computer template does not appear,
and I cant find how to make it available. The computer template is
specified in the Plicy Settings folder of the CA, but it doesn´t
appear in the web page.

How can I make it available for everyone?, or what other template can
I use?, I have tried with web server (in the server) an user (in the
client) but it still dont work... :(

thaks in advance
 
B

Brian Komar

Hi everyone, Could somebody help me to install computer certificates
for l2tp vpn connections?

I want to instal l2tp VPN certificates to a server and a computer
from a Win2000 Enterprise Root CA. I want to do it using the web page
request method, since we want only some computers to have certificates
installed. But in the web page, the Computer template does not appear,
and I cant find how to make it available. The computer template is
specified in the Plicy Settings folder of the CA, but it doesn´t
appear in the web page.

How can I make it available for everyone?, or what other template can
I use?, I have tried with web server (in the server) an user (in the
client) but it still dont work... :(

thaks in advance
Click to expand...
You need to change the certificate template to the Computer (offline
Request) or IPSec (offline request) template. The reason that the
certificate does not appear in the Web page is that the web request is
performed in the security context of the requestor, not the requesting
computer.

By using the offline request forms, the user must input the computer
naming information, and then request the cert.

Brian
 
I

izael

Thanks Brian, I did it, but it still doesnt work.

I installed a certificate in both the server and the client using the
"IPSec offline request" template, the certificate is in the Local
computeter store.

I tried with a stand alone CA, I installed a certificate in the server
and client from a standalone CA, and with these certificate the l2tp
vpn connection works without any problem, but with the Enterprise CA I
can´t install the correct certificate to make it work.

Do I miss something?, Do I have to modify something in the Active
Directory too

Thanks
 
P

Paul Adare

microsoft.public.win2000.security news group, Curtis Clay III [MSFT]
This article should address your concerns...

240262 How to Configure a L2TP/IPSec Connection Using Pre-shared Key
http://support.microsoft.com/?id=240262
Click to expand...

Actually, it won't. Using pre-shared keys should be an absolute last
resort. The path Izael is going down now with certificates is far, far
more secure.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

why does Microsoft CA server does not install certificates in trustet root? 6
L2TP/IPSec Computer Certificates for non domain computers 5
Certification Autority not installing trusted root certificates 1
Information on VPN with L2TP 4
Certificates and templates 2
VPN Logons - Certificates 1
When do ad certificates get renewed 4
VPN using L2TP and certificates 3

Top