From: Travis Gamble (travisgamble@xxxxxxxx)
Date: Thu Dec 07 2000 - 23:05:21 GMT-3
One thing I've noticed is that Windows tries to cache passwords. When they
first turn on their computer, they aren't generally connected to the VPN, so
they can't login normally at that point. Make sure they are still setup to
logon to the domain, even if they can't. Have them enter the correct
username and password at the login prompt, and just say "OK" when it
complains that it can't find a domain controller. Keep hitting OK until it
boots, without the domain controller. This will cache the correct
username/password combination, so that when it does try and connect to an NT
server, it will send the correct information. Also, as others have said,
make sure you have WINS or an LMHOSTS file working to allow them to find the
domain controller(s).
Hope this helps,
Travis Gamble
Systems Engineer
Attache Group Inc.
----- Original Message -----
From: "Jim Bond" <trycisco@yahoo.com>
To: <cisco@groupstudy.com>
Cc: <ccielab@groupstudy.com>
Sent: Thursday, December 07, 2000 1:18 AM
Subject: tough VPN question
> Hello,
>
> I'm trying to set up a IPSec between a PIX (branch
> office) and router (central office). All PCs at branch
> office share 1 ip address. IPSec seems to be working
> fine because clients can ping/telnet/email/map drives
> from/to central office. The problem is they can't
> logon NT domain. They can ping domain controller
> though.
>
> Any idea why they can't log on NT domain? (The
> machines were already added to domain)
>
> Thanks in advance.
>
>
> Jim
>
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:26:00 GMT-3