SSTP Environment Windows Server 2008 R2.
Server02R with RRAS and CA (standalone) services, and Server02N with NPS Services.
I want to secure more connection to SSTP VPN Server with client certificate EAP. So on the CA i create an request for client certificate and then I export and import on the local machine. Connection without EAP types works fine with user domain name and password. Problem only is when i check on the security tab in VPN Connection Use Extensible Authentication Protocol (EAP) witj drop down menu Microsoft: Smart Card or other certificate (encryption enabled)
On the Server02N with NPS services role in Connection Request Policy I crete new on with settings Override network policy authentication settings and check Microsoft smart card or other certificate and on the edit I`ve got a certificate for Server02R (sstp.example.com). When User trying to connecto to sstp vpn server he has 691 error problem. In the logs on RRAS server I`ve got eroors 20255 and 20271 with message:
CoId={0E740F79-5576-44F2-8FE2-A12A4B2055BE}: The following error occurred in the Point to Point Protocol module on port: VPN0-127, UserName: Kris SSTP Mix. The connection was prevented because of a policy configured on your RAS/VPN server. Specifically, the authentication method used by the server to verify your username and password may not match the authentication method configured in your connection profile. Please contact the Administrator of the RAS server and notify them of this error. What What am I doing wrong? Please help me because I don`t have any idea wit that. Thanks in advance.
Server02R with RRAS and CA (standalone) services, and Server02N with NPS Services.
I want to secure more connection to SSTP VPN Server with client certificate EAP. So on the CA i create an request for client certificate and then I export and import on the local machine. Connection without EAP types works fine with user domain name and password. Problem only is when i check on the security tab in VPN Connection Use Extensible Authentication Protocol (EAP) witj drop down menu Microsoft: Smart Card or other certificate (encryption enabled)
On the Server02N with NPS services role in Connection Request Policy I crete new on with settings Override network policy authentication settings and check Microsoft smart card or other certificate and on the edit I`ve got a certificate for Server02R (sstp.example.com). When User trying to connecto to sstp vpn server he has 691 error problem. In the logs on RRAS server I`ve got eroors 20255 and 20271 with message:
CoId={0E740F79-5576-44F2-8FE2-A12A4B2055BE}: The following error occurred in the Point to Point Protocol module on port: VPN0-127, UserName: Kris SSTP Mix. The connection was prevented because of a policy configured on your RAS/VPN server. Specifically, the authentication method used by the server to verify your username and password may not match the authentication method configured in your connection profile. Please contact the Administrator of the RAS server and notify them of this error. What What am I doing wrong? Please help me because I don`t have any idea wit that. Thanks in advance.