AppleTalk over PPP

  • Article

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

AppleTalk over PPP

Macintosh users can dial in to a computer running Services for Macintosh by using a PPP client that supports AppleTalk Control Protocol (ATCP). ATCP is installed automatically if remote access and AppleTalk Protocol are installed. The AppleTalk protocol is installed automatically with File Server for Macintosh and Print Server for Macintosh. You can also install AppleTalk protocol separately. The version of ATCP that comes with Services for Macintosh includes the following features:

  • Addresses are dynamically allocated.

  • Clients are not forced to change their passwords.

ATCP client callback functionality is identical to other dial-up client types. Callback ensures that only users from specific locations can access the dial-up server. This saves toll charges for the user. In addition, ATCP clients can specify their number to be called back at the time they dial in, if their account is callback-enabled. To do this, users specify their user name as username@phonenumber. For example, a user named Jeff Smith, whose account is configured for callback, wants to be called back at 5550123. He can enter JeffSmith@5550123 as his user name, and he will be called back at that number.

Guest account authentication and access authorization are the same for ATCP as for any other dial-up method.

ATCP requires that user passwords be saved in reversibly encrypted plaintext format on the dial-up server. (By default, passwords are not stored on the dial-up server in plaintext format.) Because of this requirement, existing users who want to use the ATCP protocol must have their passwords converted to plaintext format. First the administrator must enable the dial-up server to store passwords in plaintext format. For existing accounts, the administrator can then either delete and re-create the accounts or change the password for the accounts. The passwords are then stored in plaintext format, and users can dial in using the ATCP protocol.

All account passwords created after enabling plaintext password storage will be saved in plaintext format.

You can store passwords on a per-user or domain-wide basis. So for ATCP clients, and for Apple Encrypted passwords to work, the administrator must configure encrypted plaintext password storage for each user.

Note

  • Do not statically configure client addresses, because addresses are dynamically allocated.