|
|
Hello, I've seen in this list a lot of posts about Windows shares, but none of them solved my problem. I have this configuration: Win2K-Pro ------ INTERNET ------ FW ------ Openvpn-server ------ LAN Openvpn-server is a Linux box with a bridged configuration (TAP devices) using Openvpn 2.0 Beta15 (tried also 14). The Win2K machine is running Openvpn 2.0 Beta11 (tried Beta13). I can ping both peers (inside the tunnel), I can browse the "Network Neighbourhood" and I can access most services of Lan computers from the roadwarrior (i.e, 'net send', ssh sessions, Terminal Server sessions, etc). My problem is I cannot access shared resources in LANed Windows machines from the roadwarrior when the user has logged in using the *cached credentials*. If I try connecting from a computer in another domain or workgroup, I have no problem, since my peer requests my credentials and grants me access, but as I said, if I've logged in the system using cached credentials, when I try to access shares in other computers no prompt is shown to enter credentials (as I'm theorically logged in the domain). In this case, sniffing the connection reveals a NETLOGON protocol authentication failure (0x17), because the username is sent empty. I guess this is not an Openvpn issue, but doing the same connected directly to the LAN (and having started the session with cached credentials and the cable unplugged) everything works fine. Here are my config files: SERVER: local 10.0.0.40 port 5000 proto udp dev tap ca cacert.pem cert server.crt key server.pem crl-verify /etc/ssl/CA/crl/crl.pem dh dhserver.pem server-bridge 10.0.0.40 255.255.255.0 10.0.0.247 10.0.0.250 keepalive 10 60 client-to-client comp-lzo max-clients 4 user openvpn group openvpn persist-key persist-tun log-append /var/log/openvpn.log verb 4 CLIENT: client dev tap proto udp remote aaa.bbb.zzz.ddd resolve-retry infinite nobind ca cacert.pem cert client.crt key client.pem route-delay pull comp-lzo verb 3 Has anybody know how to solve this problem? Is it possible to logon a domain using a script in the windows host? Thanks in advance. Carl ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |