+ Post New Thread
Results 1 to 5 of 5
Windows Thread, Dial-in options in Active Directory in Technical; Good afternoon all. This is a bit of a long shot, but I am hoping someone out there may have ...
  1. #1

    Join Date
    Mar 2007
    Location
    Chorley
    Posts
    74
    Thank Post
    20
    Thanked 5 Times in 5 Posts
    Rep Power
    15

    Dial-in options in Active Directory

    Good afternoon all.

    This is a bit of a long shot, but I am hoping someone out there may have seen this problem before. To cut a long story short, I am trying to setup our VPN connection with CLEO on our Windows Server 2003 domain. This means installing Internet Authentication Service and allowing a few account to logon from a user's profile in Active Directory.

    All the software installs fine. The only problem happens when I try and enable a user accounts dial-in access through AD. When we click on the Dial-in tab, an error is being displayed:

    "Could not load the dial-in profile for the user either because: Either a required impersonation level was not provided, or the provided impersonation level is invalid.".

    Now when we click the OK button on the message the dial-up tab is empty except for a message "Dial-in page initialization failed". I have had a good look around the web, but have not been able to find a solution to this error.

    We have removed the IAS software but the above error still appears.

    If anyone has any suggestions they would be very much appreciated as this has got me stumped. Thanks in advance for any ideas.

    Regards:
    Mike

  2. #2

    Join Date
    Jul 2007
    Location
    Nottingham
    Posts
    195
    Thank Post
    19
    Thanked 7 Times in 7 Posts
    Rep Power
    16
    Sorry can't help with the GUI problem but thought that this may help until a fix is found:

    http://www.microsoft.com/technet/scr...5/hey0825.mspx

  3. #3

    Join Date
    Mar 2007
    Location
    Chorley
    Posts
    74
    Thank Post
    20
    Thanked 5 Times in 5 Posts
    Rep Power
    15
    Thanks for the reply.

    Whilst looking for a solution to this problem I saw a few pages mentioning the use of VBS scripts but I've never used them on a server before. Seems quite simple that I should be able to change the SQL to an update command to change the few accounts I need for our VPN, is this right?

    Also, I'm still quite new at server management, so how do I run this type of script against the AD?

    Cheers.

  4. #4

    Join Date
    Mar 2007
    Location
    Chorley
    Posts
    74
    Thank Post
    20
    Thanked 5 Times in 5 Posts
    Rep Power
    15
    Ok, thought I should post an update on this one in the unlikely event that anyone else happens to fall into the same set of circumstances. To cut a long story short, our servers were not updated. Just needed to install SP2. Not a problem? Not quite.

    Don’t know if anyone else has had this problem before but when we attempted to put either SP1 or SP2 on any of our servers, the network cards would disappear from the Network Connections control panel window and no communication could be made to the server via the network. After a lot of web searching I eventually found that this was being caused by a permissions change forced in the upgrade.

    The only solution being to uninstall the service pack and make a change to the local policies on each of the effected servers. Open the gpedit.msc console, navigate to Computer Configuration/Windows Settings/Security Settings/Local Policies/User Rights Assignment and edit the “Impersonate a client after authentication”. Add the Administrators group and the Service account.

    Now when the service pack is reinstalled the network cards remain and I was able to get to the illusive Dial-in tab. There may be another method, but this in the only one I managed to get working.

    Hope this is helpful to someone.

    Regards:
    Mike.

  5. #5

    Join Date
    Jan 2008
    Posts
    17
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    We use CLEO and if you want anyone to be able to log on to your network try logmein.com. This will let a user logon to a machine at school as long as it is turned on, would suggest a PC in an office somewhere in a secure location. We have trialled this and it is being rolled out to users with secure offices. The pay version has extended functions but the free version gives an online version of remote desktop with a feature to sync clipboards, which is more than required by users. I actually use it from school at times to connect to home when CLEO blocks sites as it is more reliable than using proxies!!

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 7
    Last Post: 31st January 2008, 12:17 PM
  2. PDA and Active Directory
    By localzuk in forum Windows
    Replies: 4
    Last Post: 10th October 2007, 03:54 PM
  3. script for active directory
    By chalkwellstu in forum Scripts
    Replies: 8
    Last Post: 24th September 2007, 01:53 PM
  4. TeraStation and Active Directory
    By mmoseley in forum Hardware
    Replies: 4
    Last Post: 6th September 2007, 01:28 PM
  5. Active Directory Explorer v1.0
    By PiqueABoo in forum Downloads
    Replies: 1
    Last Post: 16th July 2007, 10:02 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •