How to implement PEAP-MSCHAPv2 as authentication method for VPN connections in TMG 2010

As you may know, there is a known security vulnerability for the authentication method MS-CHAPv2. The following TechNet article provides some detailed information about it: Microsoft Security Advisory (2743314) Unencapsulated MS-CHAP v2 Authentication Could Allow Information Disclosure http://technet.microsoft.com/en-us/security/advisory/2743314 You may consider moving away from PPTP VPN connections which are configured to use this authentication method…


UserConnect - the simplest remote access solution by a Forefront TMG business partner

Industry Hi-Tech, Manufacturing Number of users 250 The Solution SlickAccess UserConnect The Challenges As a fast growing company, the IT department had to provide access to an increasing number of applications for its customers, employees, partners and suppliers. Deployed on multiple platforms such as local PCs and terminal servers, IT found itself spending an increasing…


RRAS Service fails to start on ISA Server 2006 when enabling RADIUS Authentication for VPN Users

Introduction   Consider a scenario where the ISA Server administrator has dial-in VPN correctly configured and working through ISA Server 2006. Now he needs to use RADIUS as the credentials authority and he makes the appropriate changes to the RADIUS configuration on the VPN settings as shown in Figures 1, 2 and 3:    …