[Openswan Users] Openswan + L2TP + Domain Controller?

Erich Titl erich.titl at think.ch
Mon Jun 29 16:54:51 EDT 2009


Martin Spinassi schrieb:
> Hi list,
> I've been looking for the way of making a secure VPN with Ipsec/L2TP.
> I've read some documentation at openswan web site, and a link I've found
> googling around (http://www.jacco2.dds.nl/networking/openswan-l2tp.html)
> What I don't have very clear is that is possible to use a certificate to
> authenticate to openswan, but what I also want is to check the
> credentials using user/password and checking them in a MS Domain
> Controller. This way looks pretty secure (something I have and something
> I know), but couldn't find some documentation that tells it is
> possible....
> ¿Does exists what I'm looking for? ¿Have you tried it? 
> Any link or documentation is welcome!

Being much of a M$ agnostic I believe the cleanest way is to just
terminate the tunnel on your OpenSwan server and then forward L2TP
traffic to M$ for them to do whatever they may have in their minds. That
way you don't get between the lines in the M$ skirmishes.



-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3396 bytes
Desc: S/MIME Cryptographic Signature
Url : http://lists.openswan.org/pipermail/users/attachments/20090629/44480eb5/attachment.bin 

More information about the Users mailing list