Microsoft 2004 User Manual
ISA Server 2004 Configuration Guide 257
Create the VPN Gateway Dial-in Account at the Main
Office
Office
We must create a user account that the main office VPN gateway can authenticate when it
initiates the VPN site-to-site connection. The user account must have the same name as the
demand-dial interface created on the branch office machine.
initiates the VPN site-to-site connection. The user account must have the same name as the
demand-dial interface created on the branch office machine.
Perform the following steps to create the account the remote ISA Server 2004 firewall will use
to connect to the main office VPN gateway:
to connect to the main office VPN gateway:
1. Right
click
My Computer on the desktop and click Manage.
2. In
the
Computer Management console, expand the Local Users and Groups node.
Right click the Users node and click New User.
3. In
the
New User dialog box, enter the name of the main office demand-dial interface. In
our current example, the demand-dial interface is Main. Enter Main into the text box.
Enter a Password and confirm the Password. Make a record of the password because
you’ll need to use it when you configure the remote ISA Server 2004 VPN gateway
machine. Remove the checkmark from the User must change password at next logon
check box. Place checkmarks in the User cannot change password and Password
never expires check boxes. Click Create.
Enter a Password and confirm the Password. Make a record of the password because
you’ll need to use it when you configure the remote ISA Server 2004 VPN gateway
machine. Remove the checkmark from the User must change password at next logon
check box. Place checkmarks in the User cannot change password and Password
never expires check boxes. Click Create.
4. Click
Close in the New User dialog box.
5. Double
click
Main user in the right Pane of the console.
6. In
the
Main Properties dialog box, click the Dial-in tab. Select Allow access. Click
Apply and OK.