Community discussions

MikroTik App
 
essides
newbie
Topic Author
Posts: 48
Joined: Fri Mar 10, 2017 6:18 pm
Location: Spain

VPN - What I should to use?

Thu Nov 24, 2022 11:32 pm

Hi there,

I'm trying to get information about what type of VPN do I have to implement but I'm completely messed.

People use company computers and they login with their own windows domain controller users.

Computers can be shared so use computer authentication isn't a option, it must to be by user.

Pptp have zero security but it works in the way I want. I can use username and password ( radius ) to authenticate user, it has no 3rd party apps and it's quite simple to manage. ( even I can use network sign-in in windows)

I was reading about IKEv2 but create a certificate for each user is problematic for huge scenarios, even when you want to revoke it.

Any options for a secure and easy VPN to deploy using windows domain controller?

Thanks!
 
User avatar
MickeyT
Member Candidate
Member Candidate
Posts: 125
Joined: Tue Feb 18, 2020 7:06 am
Location: Australia

Re: VPN - What I should to use?

Fri Nov 25, 2022 9:02 am

If you've already got the RADIUS authentication working with the MikroTik querying Windows AD then you can use any of the built-in VPN server options and you'd be much better off using L2TP/IPSec rather than PPTP.

If you don't want to install additional software and all of the VPN clients are running Windows then you can use SSTP and you'll only need to install certificates on the SSTP server end (I've done this using Let's Encrypt certificates and it works well).

Who is online

Users browsing this forum: Google [Bot] and 52 guests