Greetings, all!
I've been banging my head on the wall for a week trying to get a VPN up and running on a new server installation. This includes:
-Windows 2008 R2 SP1 as firewall, using Forefront TMG Standard. One NIC for WAN, another for LAN.
-Windows 2008 SBS Premium as DC, File server, Print server, Exchange 2007 server, etc.
Set up PPTP VPN Server on Forefront TMG. Using MS-CHAPv2 for authentication. Tried to connect to the server and I get error 812: The connection was prevented because of a policy configured on your RAS/VPN
server. Specifically, the authentication method used by the server to verify your username and password may not match the authentication method configured in your connection profile. Please contact the Administrator of the RAS server and notify them of thiserror.
However if I connect with the network administrator account, it works fine. At this point, I'm looking for functionality rather than security. So if I have to disable authentication altogether, I'm up for it. Problem is, with Forefront TMG + two servers each
with the NPS role (by default), where exactly do I have to make the changes? I know I should check if authentication settings coincide with both server and clients, but where, exactly?
Appreciate any help I can get!