RE: radius server implimentation

["Stephane Auger" <sauger () pre2post com>]

To follow up on the originial question, here's a little something I'd
like to ask.  I read from the other posts that IAS can be used to
authenticate AD.  Let's say you have more than one AD forest, no trusts.
Is there a way to tell one AD controller to authenticate its users using
the other AD's IAS without creating a trust?

Stephane

-----Original Message-----
From: cygnuz1979 [mailto:cygnuz1979 () gmail com] 
Sent: July 14, 2005 4:19 AM
To: security-basics () securityfocus com
Subject: Re: radius server implimentation

Hi
for AP just look at 802.1x using ias server from microsoft for radius,
so register the server in AD; it worked for me with CISCO AP 1100
using user/pass or Digital certificates. Freeradius can do this with
ntlm auth, but it is still beta if I remember well (if you try with
this one give me links to some documention please!). Don't know for
VPN concentrator, but I think it's not so different. Hope this help

On 7/13/05, ken zo <kenzo_chin () hotmail com> wrote:
> I'm looking into implementing a radius server that will do
authentications
> for a Cisco VPN 3000 concentrator. I will also use that to configure
all the
> Cisco Aironet 1200 access points to authenticate any wifi users.  If
> possible, I would like to also be able to authenticate the users to a
win2k3
> active directory.  NOT sure if this last part is possible.
> I'm wondering if any of you have done this and if you could give me
some
> guidance.
>
> Thank you.
>
> _________________________________________________________________
> Don't just search. Find. Check out the new MSN Search!
> http://search.msn.click-url.com/go/onm00200636ave/direct/01/