[Openswan Users]Windows roadwarrior authentication and browsing solutions

John A. Sullivan III jsullivan at opensourcedevel.com
Mon Dec 5 14:04:25 CET 2005


Bizarre! This is the second time I have posted only to find the subject
stripped out of the posting - John

On Mon, 2005-12-05 at 13:12 -0500, John A. Sullivan III wrote:
> As I mentioned in a previous post, during one of our production
> deployments of the ISCS network security management project
> (http://iscs.sourceforge.net), we deployed several windows road warriors
> using the lsipsectool (http://sourceforge.net/projects/lsipsectool) and
> found we had problem with reliable network browsing even though WINS was
> deployed and configured and with Kerberos authentication to Active
> Directory.
> 
> We have successfully worked through both problems with three registry
> hacks:
> 
> To fix the Windows authentication problem we need to set the
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IPSEC
> \NoDefaultExempt DWORD registry value to 1
> 
> To enable reliable network browsing we need to set the
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Browser\Parameters
> \IsDomainMaster and HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
> \Browser\Parameters\MaintainServerList registry values to FALSE
> 
> Hope this helps anyone else who is struggling with this - John
-- 
John A. Sullivan III
Open Source Development Corporation
+1 207-985-7880
jsullivan at opensourcedevel.com

Financially sustainable open source development
http://www.opensourcedevel.com



More information about the Users mailing list