Microsoft 2004 Manuel D’Utilisation

ISA Server 2004 Configuration Guide 250 

Create the VPN Gateway Dial-in Account at the Main 
Office 

A user account must be created on the main office firewall that the branch office firewall can 
authenticate when it creates the site-to-site connection. This user account must have the 
same name as the demand-dial interface on the main office computer. You will later configure 
the branch office ISA Server 2004 to use this account when it dials the VPN site-to-site link. 

To create the account the remote ISA Server 2004 firewall will use to connect to the main 
office VPN gateway: 

1. Right 

click 

My Computer on the desktop and click Manage.  

2. In 

the 

Computer Management console, expand the Local Users and Groups node. 

Right click the Users node and click New User.  

3. In 

the 

New User dialog box, enter the name of the main office demand-dial interface. In 

our current example, the demand-dial interface is Branch. Enter Branch into the text box. 
Enter a Password and confirm the Password. Make a record of the password because 
you’ll need to use it when you configure the remote ISA Server 2004 VPN gateway 
machine. Remove the checkmark from the User must change password at next logon 
check box. Place checkmarks in the User cannot change password and Password 
never expires check boxes. Click Create. 

4. Click 

Close in the New User dialog box. 

5.  Double click the Branch user in the right Pane of the console. 

6. In 

the 

Branch Properties dialog box, click the Dial-in tab. Select Allow access. Click 

Apply and then click OK.