How to Set Up L2TP IPSec VPN with AD Authentication on Nebula?
Zyxel Employee
Nebula Cloud provides VPN solutions that can authenticate through an AD server for L2TP over IPsec VPN / IPsec VPN.
Configure Steps
Using Windows Server 2016 as the AD server
1. AD server installation
Install an AD Server and set it as a domain controller. If installed in a virtual machine, make sure that the virtual NIC needs to be bridged to the physical NIC.
2. AD server configuration
Navigate to Firewall > Configure > Firewall settings, input the name, server IP address, AD domain, and administrator username/password. The default service port is 389.
3. L2TP over IPsec Remote VPN configuration
Navigate to Firewall > Configure > Remote access VPN, input the secret and select the AD server as the Authentication method
4. Set up L2TP VPN on Windows PC
Settings > Network & Internet > VPN > Add a VPN connection
a. VPN Provider: Drop down to select Windows(built-in)
b. Input Connection name
c. Input Nebula device Public IP
d. VPN type: L2TP/IPsec with pre-shared key
e. Per-shared key: input the pre-shared key that set up on Nebula
f. Input VPN username/password(which is the user on AD server)
g. Navigate to Control Panel > Network and Sharing Center > Change Adapter settings, tick the VPN interface we just added > Properties > Security, make sure the VPN type is L2TP/IPsec and tick “Unencrypted password(PAP)”
Test the Result
Categories
- 6.8K All Categories
- 1.3K Nebula
- 26 Nebula Ideas
- 28 Nebula Status and Incidents
- 3.8K Security
- 199 Security Ideas
- 691 Switch
- 25 Switch Ideas
- 567 WirelessLAN
- 8 WLAN Ideas
- 4.5K Consumer Product
- 95 Service & License
- 212 New and Release
- 35 Security Advisories
- 477 FAQ
- 216 Nebula FAQ
- 107 Security FAQ
- 72 Switch FAQ
- 66 WirelessLAN FAQ
- Documents
- 20 Nebula Monthly Express
- 40 About Community
- 31 Security Highlight
