Hi there,
I’m trying to integrate Mikrotik router to my environment even deeper, so I want to use account from active directory as login to RoadWarrior VPN.
I’ve just tried L2TP/IPsec with RADIUS server pointed to my AD server. It worked like a charm, BUT it is useless because of Mikrotik’s limitation only one L2TP/Ipsec client from each source IP address.
So I googled this presentation:
https://mum.mikrotik.com/presentations/RO18/presentation_6171_1541359915.pdf
What is very cool and working, but I have problem with setting reversible encryption on passwords. I think it is counter security to use it this way. (No - I haven’t got really problem with setting itself)
Do you anyone know about a way that I can use RADIUS in the MSCHAPv2 way as L2TP uses it and also it is working on IKEv2 VPN type?
OpenVPN is not an option, also I’m rather not to use certificates in VPN setup.
Have a nice day!