Connect from an L2TP VPN Client

When you start an L2TP connection from any L2TP client, you must provide a user name and password.

The user name and password must match the name and password of a user on the authentication server specified in the Mobile VPN with L2TP configuration.

If you enable multiple authentication servers in the Mobile VPN with L2TP configuration on the Firebox, users who do not use the default authentication server must specify the authentication server. The user can specify the non-default authentication server as part of the user name, or as the domain.

The user name must be in one of these formats:

To use the default authentication server

Type the user name. Example: j_smith

To use a non-default authentication server

Type the authentication server name or domain name, and then type a backlash (\) followed by the user name. Example: <server.example.com>\<j_smith>.

Firebox-DB —  Firebox-DB\j_smith

RADIUS(Fireware v12.5 or higher) — rad1.example.com\j_smith. You must type the domain name specified in the RADIUS settings on Firebox.

RADIUS (Fireware v12.4 or lower) — RADIUS\j_smith. You must always type RADIUS.

Alternatively, the user can type the authentication server (Firebox-DB or the RADIUS domain name) in the Domain text box rather than part of the user name.

If your configuration includes a RADIUS server, and you upgrade from Fireware v12.4.1 or lower to Fireware v12.5 or higher, the Firebox automatically uses RADIUS as the domain name for that server. To authenticate to that server, you must type RADIUS as the domain name. If you type a domain name other than RADIUS, authentication fails.

Related Topics

Mobile VPN with L2TP

Configure Client Devices for Mobile VPN with L2TP

How can I create and deploy custom IKEv2 and L2TP VPN profiles for Windows computers?