Hi,
Currently, our vpn users have to authenticate first with the juniper with a vpn user created on the juniper. Afther that, they need to authenticate with their win2k3 domain login to open outlook(exchange), shares,...
The client software is netscreen.
Is it possible and safe, to configure the Juniper 5GT with LDAP or RADIUS authentication so that our vpn users immediately can login to the domain with their domain credentials and could access exchange, shares,.... without further logins?
Are these authentication protocols just a way to authenticate the users and that's it? or is their a possibility with these protocols they effective authenticate themself on the domain and gets the domain rights configured in their AD users/computer member account?
thx