Windows 2003 VPN with L2TP.

W

Ward Horsfall

Hi,

Can I get help on how to setup the following configuration:

Windows 2003 Server DC, Global Catalog, RRAS - single network.
VPN Server, AD Certificate Server. I want to set it up as a VPN
server. Note this is a single server with a single network card.

I have got it to work fine with PPTP.

However if I try to use L2TP then I get problems of missing a certificate
I have gone in and trying using the downloading the certificate to the
PC - http://<IPADDr>/Certserv etc. So the certificate is installed
on the client PC. However I don't know if I have to create custom
certificates on each side etc.

What am I missing - what steps have I not done correctly. (I think I am
close :)

Thanks,

Ward.
 
W

Ward Horsfall

Sharoon,

Thanks for your help. Here is the error I get:

Error Connection to L2TP

Connecting to 10.100.1.1...

Error 781: The connection requires a certificate, and no valid certificate
was found...

So do I need to use IAS or Radius?

Thanks,

Ward.
 
S

Sharoon Shetty K [MSFT]

Check this KB article
http://support.microsoft.com/default.aspx?scid=kb;en-us;247231&Product=win2000


--
Thanks,
Sharoon
---------------------------------------------------------
This posting is provided "AS IS" with no warranties, and confers no rights.

Ward Horsfall said:
Sharoon,

Thanks for your help. Here is the error I get:

Error Connection to L2TP

Connecting to 10.100.1.1...

Error 781: The connection requires a certificate, and no valid certificate
was found...

So do I need to use IAS or Radius?

Thanks,

Ward.


Sharoon Shetty K said:
What is the error code you are getting?

Check this link for more details on "Network access authentication and
certificates"
Click to expand...
http://www.microsoft.com/resources/...003/standard/proddocs/en-us/sag_VPN_und15.asp
Click to expand...
 
P

Priya Raghavan [MSFT]

You need machine certificates on both the Client and the RRAS Server for
L2TP.
If your RRAS server is on the domain, it would have already obtained the
required certificate.

On the Client side, can you confirm if the certificate is on the "Machine
store" and not in the "User store".

To check that, follow these steps:

On the command prompt, type "mmc"
File -> Add/ Remove Snap-in
Add
Certificates
Computer Account
Local Computer
Finish -> Close -> Ok

Expand the pane and confirm that the cert is present in the personal store.

--
Thanks,
Priya.

------------------
This posting is provided "AS IS" with no warranties, and confers no rights.




Ward Horsfall said:
Sharoon,

Thanks for your help. Here is the error I get:

Error Connection to L2TP

Connecting to 10.100.1.1...

Error 781: The connection requires a certificate, and no valid certificate
was found...

So do I need to use IAS or Radius?

Thanks,

Ward.


Sharoon Shetty K said:
What is the error code you are getting?

Check this link for more details on "Network access authentication and
certificates"
Click to expand...
http://www.microsoft.com/resources/...003/standard/proddocs/en-us/sag_VPN_und15.asp
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Problem connecting OSX and Vista Clients to Win2k3 L2TP VPN Server 0
L2TP Question 1
L2TP IPSec error 789 & 792 0
L2TP/VPN problem/questions 2
PLEASE HELP ! L2TP & Certificates 3
L2TP VPN connections 1
How to use certificates for L2TP VPN connection 2
L2TP problem although IPSec is working using certifiactes 2

Top