Page 1 of 1
SSTP, NT Authentication on Windows 2012 issue
Posted: Thu Apr 07, 2016 2:43 pm
by certinet
Hi,
We've setup a VPN with SoftEther on a Windows 2012 server. I can connect from the SoftEther VPN Client without issue using a Active Directory Account. When I try to connect through the Windows build-in (SSTP), I get an error about bad user name or password. On the server part, in Event Viewer, I get an AD error that the user could not authenticate.
What to do?
Thanks
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Thu Apr 07, 2016 3:14 pm
by certinet
Found some information. If I set, on the client side, the authentication to PAP (password unencrypted), it works. If I set it back to MS-CHAPv2, it doesn't work.
Seems like CHAPv2 is not activated on Windows 2012 or SoftEther Server.
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Thu Apr 07, 2016 3:36 pm
by certinet
Other findings!!!
Seems like MS-CHAPv2 supports only NTLM while my Windows 2012 server wants NTLMv2
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Fri Apr 15, 2016 12:26 pm
by certinet
Up!
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Wed Apr 20, 2016 3:21 pm
by certinet
No one has any idea?
Thanks
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Thu Apr 21, 2016 11:59 pm
by exciter0
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Fri May 20, 2016 7:29 am
by thisjun
SoftEther VPN supports MS-CHAPv2.
Did you include domain name in username?
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Tue Jul 05, 2016 8:56 pm
by certinet
Yes I did
domain\username and even username@domain
Re: SSTP, NT Authentication on Windows 2012 issue
Posted: Fri Jul 22, 2016 1:35 am
by thisjun
If domain name and virtual hub name is same, please append @virtual hub name.