Windows 2003 PPTP VPN server set up

[MRK]

I am trying to set up a PPTP based VPN server on a windows 2003 server
Machine.
This is a very simple setup. I want the server to be set up to cater to
all levels of authentication and encryption types ?

Is it possible to do just that ?

I have set up the users for reversible password encryption. I read on
another post that you should also set up the domain for the same. I do
not see any way of doing that . Does anybody know how to do that ?

The only authentication types that works for me are MS-CHAP V2 and
SPAP.

For the others I get the folowing errors:

PAP:
------
Error 942: You do not have permission to connect using the selected
authentication protocol

CHAP:
---------

Error 691: Access Denied because username and/or password was invalid
on domain

MS-CHAP:
---------------

Error 649: The account does not have permission to dial in.

I do not have any Radius or IAS server configured. Can I set this up
without the IAS server ?

 

[MRK]

I could get MS-CHAP and PAP working. I disabled the "Store Password
using reversible encryption" option and everything EXCEPT CHAP works.

 

[Puja Pandey[MSFT]]

For CHAP to work you need to Enable "Store Password using reversible
encryption" option. After enabling this option reset the password for the
user with which you are trying to connect.

For enabling all auth types make sure you enable the auth types on RAS
Server properties page as well on the Remote Access Policies.

 

[MRK]

Puja,

Thanks for the guidance. Actually all I did was change the password.
I did not enable "Store password using reversible encryption".

-- Now got to debug it.