Export (0) Print
Expand All

STEP 5: Configure EDGE1 and 3-EDGE1 to use EAP for site-to-site authentication

Published: August 10, 2012

Updated: August 10, 2012

Applies To: Windows Server 2012, Windows Server 2012 R2



  1. On EDGE1, In the Routing and Remote Access snap-in, expand EDGE1, and then click Network Interfaces.

  2. Right-click EDGE1@corp.contoso.com and then click Properties.

  3. Click the Security tab and then select Use Extensible Authentication Protocol (EAP).

  4. Right-click the IPsec template in the list, and then click Duplicate Template.

  5. Select EAP-MSCHAP V2 in the dropdown menu

  6. Click Ok.

  7. When prompted for username\password, enter 3-EDGE1, Pass@word1

PowerShell Logo Windows PowerShell equivalent commands

The following Windows PowerShell cmdlet or cmdlets perform the same function as the preceding procedure. Enter each cmdlet on a single line, even though they may appear word-wrapped across several lines here because of formatting constraints.. Use the ipconfig /all command to list all the interfaces.

Set-VpnS2SInterface  EDGE1  -Protocol IKEv2 –AuthenticationMethod –EAP –UserName "3edge1" –Password Pass@word1

  1. On EDGE1, In the Routing and Remote Access snap-in, expand EDGE1, and then click Network Interfaces.

  2. Right-click EDGE1@corp.fabrikam.com and then click Properties

  3. Click the Security tab and then select Use Extensible Authentication Protocol (EAP).

  4. Select EAP-MSCHAP V2 in the dropdown menu.

  5. Click Ok.

  6. When prompted for username\password, enter edge1, Pass@word1

PowerShell Logo Windows PowerShell equivalent commands

The following Windows PowerShell cmdlet or cmdlets perform the same function as the preceding procedure. Enter each cmdlet on a single line, even though they may appear word-wrapped across several lines here because of formatting constraints.. Use the ipconfig /all command to list all the interfaces.

Set-VpnS2SInterface  EDGE1  -Protocol IKEv2 –AuthenticationMethod –EAP –UserName "edge1" –Password Pass@word1

  1. On 3-EDGE1, in the console tree of the Routing and Remote Access snap-in, click Network Interfaces.

  2. In the Details pane, right-click edge1@corp.fabrikam.com, and then click Connect.

  3. Confirm that the connection state of VPN_Corpnet is connected.

  1. On DC1 at the Start menu, type cmd and then hit Enter. At the command prompt, type ping 10.6.0.2. Verify that there are four replies from 10.6.0.2. On 3-EDGE1, in the Internet Explorer address bar, type http://localhost/certsrv, and then press ENTER.

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft