Microsoft 2004 Manuel D’Utilisation
ISA Server 2004 Configuration Guide 250
Create the VPN Gateway Dial-in Account at the Main
Office
Office
A user account must be created on the main office firewall that the branch office firewall can
authenticate when it creates the site-to-site connection. This user account must have the
same name as the demand-dial interface on the main office computer. You will later configure
the branch office ISA Server 2004 to use this account when it dials the VPN site-to-site link.
authenticate when it creates the site-to-site connection. This user account must have the
same name as the demand-dial interface on the main office computer. You will later configure
the branch office ISA Server 2004 to use this account when it dials the VPN site-to-site link.
To create the account the remote ISA Server 2004 firewall will use to connect to the main
office VPN gateway:
office VPN gateway:
1. Right
click
My Computer on the desktop and click Manage.
2. In
the
Computer Management console, expand the Local Users and Groups node.
Right click the Users node and click New User.
3. In
the
New User dialog box, enter the name of the main office demand-dial interface. In
our current example, the demand-dial interface is Branch. Enter Branch into the text box.
Enter a Password and confirm the Password. Make a record of the password because
you’ll need to use it when you configure the remote ISA Server 2004 VPN gateway
machine. Remove the checkmark from the User must change password at next logon
check box. Place checkmarks in the User cannot change password and Password
never expires check boxes. Click Create.
Enter a Password and confirm the Password. Make a record of the password because
you’ll need to use it when you configure the remote ISA Server 2004 VPN gateway
machine. Remove the checkmark from the User must change password at next logon
check box. Place checkmarks in the User cannot change password and Password
never expires check boxes. Click Create.
4. Click
Close in the New User dialog box.
5. Double click the Branch user in the right Pane of the console.
6. In
the
Branch Properties dialog box, click the Dial-in tab. Select Allow access. Click
Apply and then click OK.