Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Community Member

VPN 3000 multiple NT domain authentication

I have a network with multiple NT4 domains and a VPN Concentrator 3005. I understand that it is possible to authenticate the users from the various domains through trusts with each of the domains and specifying NT domain authentication on the concentrator.

I am looking for a way to allow the users to not have to type in their domain name (domainname\username) to be authenticated. Users in the domain controller that the concetrator points to can login without their domain name, but users in remote domains must specify their domain name.

The only thing I could think of was to create a separate group for each domain and define NT authentication directly to each domain for the appropriate group. This will be more difficult for the helpdesk to manage so I was hoping to find a more elegant solution.

There currently is not a RADIUS infrastructure to take advantage of. Does anyone know if using Microsoft's RADIUS on NT 4 would allow us to authenticate to multiple domains without having to have the user type in their domain name? Or would RADIUS on Windows 2000 allow this?

Thanks for any guidance,


Community Member

Re: VPN 3000 multiple NT domain authentication

Any update on this?

CreatePlease to create content