locked
authentication for MS Server VPN RRS feed

  • Question

  • Hey there, we have server running in my basement, but no real physical office.  We essentially work out of coffee shops because the rent is cheaper (latte is a lot less expensive than rent :-).  This work arrangement is more fun but I get nervous about people looking over our shoulders, watching us log in, perhaps checking stuff out on our pc's when we are up in line.  I'd like to strengthen the authentication on our Microsoft VPN to a solid 2-factor solution to try to avoid that kind of thing.  I mean, what good is ssl or sstp or any other kind of encryption if you let other people walk in throught the front door?  Any ideas about how to manage this kind of thing without tokens or certificates?

    Saturday, October 4, 2008 9:01 PM

All replies

  • A good 2-factor solution could take you a long way.  For your kind of business I'd recommend a telephone based solution, like the one from PhoneFactor.  Check it out at www.phonefactor.com/solutions/remote-access-vpns.  It's worked out pretty well for my home-based business as well.

    Saturday, October 25, 2008 6:54 PM
  • Sounds pretty good, but how well effectively does PhoneFactor interact with the underlying windows remote access vpn system? 

    Saturday, October 25, 2008 7:00 PM
  • I've found Phone Factor integrates seamlessly with windows remote access VPN so your windows vpn authentication should work fine afterwards.

    Plus it will be way more secure.
    Tuesday, October 28, 2008 2:05 AM
  • Thanks, we tried PhoneFactor out for authentication for our windows remote access vpn today in a lab environment.  Surprisingly easy to set up, and it looks like it's free for a pretty good set of features.

    Wednesday, October 29, 2008 1:24 AM
  • Awesome, good to hear. http://www.phonefactor.com/solutions/remote-access-vpns for anyone else that's intereseted.
    Friday, October 31, 2008 1:54 AM