none
Can you Connect via VPN to authenticate?

    Question

  • Hello,

    Is there a way to setup Windows 7 (Ultimate) such that it connects to a VPN in order to authenticate a login? We're using the built-in Microsoft VPN client.

    Thanks.
    Val
    Saturday, December 05, 2009 2:58 PM

Answers

  • Hi,

     

    May I know if you want to logon domain via a VPN connection? If so, please try the following:

     

    1.    Create a VPN connection which allows other people to use this connection.

     

    1)     Log on as a local admin.

    2)     Go to “Network and Sharing Center”, the click “Setup up a connection or network” - “Connect to a workplace” OR “Set up a dial-up connection”.

    3)     Check the checkbox to “Allow other people to use this connection” (so that the owner of the DUN configuration will be System and not your individual user).

    4)     Complete the wizard and save the connection.

     

    2.    Join the PC to a domain (establish a dial-up connection first, if needed).

     

    3.    Log on using Dial-up Connection

     

    1)     After rebooting, press Ctrl-Alt-Delete to log on if prompted.

    2)     You are presented with the logon screen for the user that last logged in. Press Esc or click Switch User to view other logon options.

    3)     There will now appear a blue button (Network logon) near the lower-right corner, just to the left of the red Shut Down button.

    4)     Click the blue button. If you have more than one System-owned DUN configuration, then all of them will appear here as buttons that can be clicked, in which case you click the one you want to use.

    5)     If prompted, type the username and password for the DUN connection and click the round, blue button to connect.

    6)     A dialog appears, showing the progress of the connection attempt.

    7)     After the connection is established, Windows will use the same credentials to log into Windows. If that fails, the DUN connection remains active, and you will be taken back to the Windows logon screen to submit Windows credentials.

     

    Hope this helps. Thanks.


    Nicholas Li - MSFT
    Monday, December 14, 2009 9:44 AM

All replies

  • Hi,

     

    May I know if you want to logon domain via a VPN connection? If so, please try the following:

     

    1.    Create a VPN connection which allows other people to use this connection.

     

    1)     Log on as a local admin.

    2)     Go to “Network and Sharing Center”, the click “Setup up a connection or network” - “Connect to a workplace” OR “Set up a dial-up connection”.

    3)     Check the checkbox to “Allow other people to use this connection” (so that the owner of the DUN configuration will be System and not your individual user).

    4)     Complete the wizard and save the connection.

     

    2.    Join the PC to a domain (establish a dial-up connection first, if needed).

     

    3.    Log on using Dial-up Connection

     

    1)     After rebooting, press Ctrl-Alt-Delete to log on if prompted.

    2)     You are presented with the logon screen for the user that last logged in. Press Esc or click Switch User to view other logon options.

    3)     There will now appear a blue button (Network logon) near the lower-right corner, just to the left of the red Shut Down button.

    4)     Click the blue button. If you have more than one System-owned DUN configuration, then all of them will appear here as buttons that can be clicked, in which case you click the one you want to use.

    5)     If prompted, type the username and password for the DUN connection and click the round, blue button to connect.

    6)     A dialog appears, showing the progress of the connection attempt.

    7)     After the connection is established, Windows will use the same credentials to log into Windows. If that fails, the DUN connection remains active, and you will be taken back to the Windows logon screen to submit Windows credentials.

     

    Hope this helps. Thanks.


    Nicholas Li - MSFT
    Monday, December 14, 2009 9:44 AM
  • Is there a way to make this the default for logging on thru Group Policy or any other method? I would like to require my remote users to logon to the remote computer with the VPN first and if there is no network connection or they cannot get to the VPN then use cached creds.

    Thanks,

    -D
    Friday, January 15, 2010 5:18 AM
  • Nicholas,

    Thanks for the reply.


    Val
    Monday, January 25, 2010 8:03 PM