[ATP/FLEX] How to Set Up L2TP IPSec VPN with AD Authentication on Nebula?
Nebula Cloud provides VPN solutions that can authenticate through an AD server for L2TP over IPsec VPN / IPsec VPN.
Configure Steps
Using Windows Server 2016 as the AD server
1. AD server installation
Install an AD Server and set it as a domain controller. If installed in a virtual machine, make sure that the virtual NIC needs to be bridged to the physical NIC.
2. AD server configuration
Navigate to Configure > Firewall > Firewall settings, input the name, server IP address, AD domain, and administrator username/password. The default service port is 389.
3. L2TP over IPsec Remote VPN configuration
Navigate to Configure > Firewall > Remote access VPN, input the secret and select the AD server as the Authentication method
4. Set up L2TP VPN on Windows PC
Settings > Network & Internet > VPN > Add a VPN connection
a. VPN Provider: Drop down to select Windows(built-in)
b. Input Connection name
c. Input Nebula device Public IP
d. VPN type: L2TP/IPsec with pre-shared key
e. Per-shared key: input the pre-shared key that set up on Nebula
f. Input VPN username/password(which is the user on AD server)
g. Navigate to Control Panel > Network and Sharing Center > Change Adapter settings, tick the VPN interface we just added > Properties > Security, make sure the VPN type is L2TP/IPsec and tick “Unencrypted password(PAP)”
Test the Result
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight