JSI Tip 3194. After joining a Windows 2000 domain, your RRAS server has stopped authenticating dial-up clients?


The RRAS server can authenticate local accounts, but not domain accounts. Your dial up clients may receive any one of the following errors:

Error 619, "The port was disconnected."

Error 645, "Dial-Up Networking could not complete the connection to the server."

The RRAS event log may contain:

Event id: 20073
Source: Router
Description: The following error occurred in the Point to Point Protocol module on port:
<port number>, UserName: <user name>. The authentication server did not respond
to authentication requests in a timely fashion.
If you did NOT join the domain using a Domain Administrators account, services that could compromise network security, such as RRAS, deny clients the ability to authenticate.

To resolve the problem:

1. Log on to a Windows 2000 computer with an account that is a member of the Domain Administrators group.

2. Start the Active Directory Users and Computers MMC snap-in.

3. Navigate to <Your Domain Name> / Users / RAS and IAS Servers.

4. Right-click RAS and IAS Servers and press Properties.

5. Select the Members tab.

6. Add the RRAS server to the RAS and IAS Servers group.

If your RRAS server is Windows 2000-based, you can use the Netsh.exe utility:

1. Log on to the RRAS server as a member of the Domain Administrators group.

2. Open a CMD prompt and type:

    netsh ras add registeredserver

NOTE: You can also logon as an ordinary user and use RunAs:

    runas /user:<Domain Name>\<Domain Administrator Name> "cmd"

    After entering the password, the CMD prompt opens with the cmd (running as <Domain Name>\<Domain Administrator Name> title. Type:

    netsh ras add registeredserver

You should receive:

Command Is Successful: 
Registration completed successfully:
RAS Server: <RAS Server Name>
Domain: <Domain Name>


TAGS: Windows 8
Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish