Hi, I am trying to set up a remote access VPN......Just for 1 user to remotely access our network.
We have a PIX 506e that sits in front of our LAN......we have a Windows
2000 Server Domain Controller.....I have some basic questions that I am sure will not be hard for you guys to answer. BTW I posted a similar question on a Microsoft security NG but didnt receive alot of help.
First of all, I will probably end up using the Cisco VPN client.....but so far I have just tried to set up a PPTP connection......
The remote PC is able to connect to the network.....the DC authenticates the user, and the logs show this.....
First question: Does the PC that is connecting via the VPN have to be part of the domain? If I use a laptop that has been added to the domain in the past, I am able to access everything on th enetwork that I should be able to....just like if I was sitting in my office......
However, if I try to connect with a laptop that is not currently part of the domain, I can still connect....and Windows still authenticates me.....but I have no access to anything on the network.
Second question: If the PC connecting over the VPN has to be part of the domain....is it possible to add a new PC to the domain over the VPN? I tried this and it didnt work.
Third question: Does anyone know if there is a way to configure Windows 2000 Server to allow a PC (that has not been added to the domain) to access the domain? Is this what the Guest account does?
Thanks in advance for your help.
Mike