AAA with Active Directory

From MikroTik Wiki
Revision as of 15:58, 18 October 2006 by Bmenking (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

In this example we will be using Microsoft's Active Directory to authenticate PPTP clients.

<< Not entirely complete >>

MT setup

 /ip radius add
   service=ppp,wireless
   address=<ip address of AD server>
   secret=<password for RADIUS service on AD server>
   authentication_port=1812
   accounting_port=1813
 /ip ppp AAA
   use_radius=yes
   accounting=yes
 /ip ppp pptp-server
   enabled=yes
   authentication=mschap1,mschap2

Windows Setup

 Start->Control Panel-Administrative Tools->Internet Authentication Service
 Right-click on RADIUS Clients->New
 Friendly Name: MikroTik
 Address: <ip address of MT>
 Client-Vendor: RADIUS Standard
 Shared secret: <password used to access the RADIUS service>