Configure RADIUS Authentication with Active Directory for Mobile VPN with L2TP

You can configure the Firebox to authenticate L2TP users with your RADIUS and Active Directory servers. You must complete these steps:

  • Configure your RADIUS server
  • Configure your Active Directory server
  • Configure the Firebox for RADIUS Authentication with Active Directory

Configure RADIUS and Active Directory Servers

Before you configure your Firebox to use your Active Directory and RADIUS servers to authenticate your Mobile VPN with L2TP users, make sure that the settings described in this section are configured on your RADIUS and Active Directory servers.

For complete instructions to configure your RADIUS server or Active Directory server, see the vendor documentation for each server.

Configure the Firebox for RADIUS Authentication with Active Directory

Before your L2TP users can authenticate to your network with their Active Directory credentials, you must enable your Firebox to use a RADIUS server for Mobile VPN with L2TP authentication.

Before you configure the Mobile VPN with L2TP settings, make sure that you have added your RADIUS server to the Authentication Servers list on your Firebox. The RADIUS server must have the same IP address and shared secret that you specified when you configured the NPS or IAS settings for your RADIUS server.

For more information about how to add a RADIUS authentication server, go to Configure RADIUS Server Authentication.

Configure Mobile VPN with L2TP Settings

By default, Firebox-DB is the selected server for authentication. When you configure Mobile VPN to use your RADIUS server, you can use Firebox-DB for a secondary authentication database if the RADIUS server is not available.

Fireware v12.5 or Higher

Fireware v12.4.1 or Lower

For more information about how to configure the settings for Mobile VPN with L2TP, go to Edit the Mobile VPN with L2TP Configuration.

Related Topics

About L2TP User Authentication

Mobile VPN with L2TP