- Do not perform these steps if you plan to use the default policy, described earlier.
- To add a common or custom remote access policy, do one of the following:
- If you use Windows authentication, open Routing and Remote Access, and, if necessary, double-click Routing and Remote Access and the server name.
- If you use RADIUS authentication, open Internet Authentication Service, and, if necessary, double-click Internet Authentication Service.
- In the console tree, right-click Remote Access Policies, and then click New Remote Access Policy. Use the New Remote Access Policy wizard to create a common policy, as shown
Policy Configuration Method:
Select Use the wizard to set up a typical policy for a common scenario, and then type an appropriate name for the policy, such as Authenticate BranchOfficeRouters.
Access Method:
Select VPN or Dial-up, as appropriate.
User or Group Access:
Click Group, click Add, and then type the group name you created earlier, such as BranchOfficeRouters.
Authentication Methods:
Either accept the default method, MS-CHAP v2, or choose Extensible Authentication Protocol (EAP) and specify its type (either MD5-Challenge orSmart card or other certificate).
Policy Encryption Level:
Select Strongest encryption, and clear any other selections.
No comments:
Post a Comment