SSTP, NT Authentication on Windows 2012 issue

[certinet]

Hi,

We've setup a VPN with SoftEther on a Windows 2012 server. I can connect from the SoftEther VPN Client without issue using a Active Directory Account. When I try to connect through the Windows build-in (SSTP), I get an error about bad user name or password. On the server part, in Event Viewer, I get an AD error that the user could not authenticate.

What to do?

Thanks

[certinet]

Found some information. If I set, on the client side, the authentication to PAP (password unencrypted), it works. If I set it back to MS-CHAPv2, it doesn't work.

Seems like CHAPv2 is not activated on Windows 2012 or SoftEther Server.

[certinet]

Other findings!!!

Seems like MS-CHAPv2 supports only NTLM while my Windows 2012 server wants NTLMv2

[certinet]

Up!

[certinet]

No one has any idea?

Thanks

[exciter0]

MS-CHAPv2 is not supported...see here http://www.vpnusers.com/viewtopic.php?f=7&t=4297

[thisjun]

SoftEther VPN supports MS-CHAPv2.

Did you include domain name in username?

[certinet]

Yes I did

domain\username and even username@domain

[thisjun]

If domain name and virtual hub name is same, please append @virtual hub name.