Deploying Certificate-based Authentication for VPN Connections
Updated: January 21, 2005
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
Deploying certificate-based authentication for VPN connections
The use of certificates for authentication of VPN connections is the strongest form of authentication in the Windows Server 2003 family. You must use certificate-based authentication for Layer Two Tunneling Protocol over Internet Protocol security (L2TP/IPSec)-based VPN connections and with smart cards. With smart cards, you must use the Extensible Authentication Protocol (EAP) with the Smartcard or other certificate (TLS) EAP type, also known as EAP-Transport Level Security (EAP-TLS).
This section covers: