I am looking for some help. I am following the documentation regarding
creating VPNs for my WinXP users to the M series appliances. I keep
running into problems.
First, I tried the certificate approach. (Using Microsoft CertSrv) I
installed my CA in the appliance. I then made a request for a "IPSEC"
certificate from my CertSrv (according to the documentation) and I
installed it onto my machine. When I configure my vpn in winxp to use
advanced settings I get a "798 - A certificate could not be found that
can be used with this Extensible Authentication Protocol." I think
the biggest problem here is that the documentation lacks the appropriate
"Configure the Client VPN to utilize the certificate" section. It says
plainly how to make the certificate, but it doesn't say what to do
afterwards. (how to configure the VPN connection to use the
certificate) So I gave up on the certificates.
Second, I tried using MS-CHAP Shared secret. Awesomely, the
documentation walks how to do this quite well, but for me it doesn't
work. I am getting a "789 - The L2TP connection attempt failed because
the security layer encountered a processing error during initial
negotiations with the remote computer."
My proventia logs say nothing other than accepts and other alerts that I
like to see.
Any suggestions?
Thanks,
Fred
_______________________________________________
ISSForum mailing list
ISSForum@iss.net
TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to
https://atla-mm1.iss.net/mailman/listinfo/issforum
To contact the ISSForum Moderator, send email to mod-issforum@iss.net
The ISSForum mailing list is hosted and managed by Internet Security Systems,
6303 Barfield Road, Atlanta, Georgia, USA 30328.
