VPN connection on Mac gives "PPP Server cannot be authenticated"

Similar Messages

• VPN Connectivity from Mac to Windows Server

  I have been using Windows OS all my life, now I recently bought a new Mac machine, and it my first time using Mac OSX Lepord, so I don't no much, I tried to connect my Mac to a VPN - windows using the mac VPN Connectivity provided which uses tunneling Protocol, I am successful in establishing connectivity to windows server, but the problem is, it still uses ip address assigned by the router while rowsing, and not the ip address of the VPN machine while browsing sites, the reason I use VPN connectivity is to bypass ISP who blocks most of the useful sites. I tried to set proxy setting in my safari browser, but failed and also automatic proxy does not work, can someone hep me and tell me how to achieve what I am trying to achieve using MAc.

  exero –
  Though this will be a pain it will help trace down the problem.
  Since you are attempting to VPN to the SBS what happens if you connect the Mac locally dose RDP connection map the drives and can you map to the SBS shares directly?
  What happens if you try connecting with a PC via the VPN?
  Also (though risky) I would open all the ports on your firewall that point to the SBS and try connecting to the VPN again with Mac and see what happens. (Don’t forget to close them back).
  Below are two links that may provide some additional information. The first is from Microsoft and list all of the ports used by MS products. The second one is a public post that focuses on SBS 2003.
  http://www.microsoft.com/smallbusiness/support/articles/refnet_ports_msprod.mspx
  http://www.howtonetworking.com/sbs/rwwports.htm
  Best of Luck –
  BH

• VPN Issue:  Could not Negotiate a connection with the remote PPP server

  Hello Folks,
  I setup VPN on Windows Server 2003 Enterprise R2. I am successfully able to connect to VPN via laptop internally and externally. However, on my iPhone I am not able to connect and receiving the following error "Could not Negotiate a connection with the remote PPP server".
  There doesnt seem to be a lot of documentation regarding this on Apple and or throughout the web.
  Anyone resolve this issue?
  Peace
  Phil C.

  I am not entirely sure my full setup. I had a friend help me set it up. Now for some reason when on WIFI on my own network I am able to connect to VPN ( I wasnt able to before), but when I switch to edge there is still no response for the PPP server. I even messed around with the PPP options still no response. Unfortunately I am not extremely server literate so my troubleshooting is limited. However it is now working via my own WIFI and will try it on another WIFI network tomorrow. I am wondering though if it connecting had to do with any updates from microsoft. Since this is a newly installed server 2003 it has been running updates. Some food for thought.
  Peace
  Phil

• Mac OS X Server : cannot login

  I have a Mac OS X server 10.9.5.
  Since a recent update of the Server App, I have the following problems :
  - cannot login via imap and smtp to my server
  - cannot "connect as" my self in Finder any more to see my home directory on the server from an Imac Server running also OS X 10.9.5
  my server is accessed for the email as mail.agilebuild.com and when I connect from the IMac it is known as "agilebuild.local".
  I think that I might have called the server ilantoutseul.agilebuild.com back when I set up Open Directory.
  I see the following messages in /var/log/system.log
  Any help will be appreciated.
  Antoine
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Got a canonicalize request for a LKDC realm from local-ipc
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Asked for LKDC, but there is none
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Got a canonicalize request for a LKDC realm from local-ipc
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Asked for LKDC, but there is none
  Dec  7 14:03:12 192.168.1.79 kdc[57]: AS-REQ [email protected] from 192.168.1.71:55075 for krbtgt/[email protected]
  Dec  7 14:03:12 --- last message repeated 1 time ---
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
  Dec  7 14:03:12 192.168.1.79 kdc[57]: AS-REQ [email protected] from 192.168.1.71:55063 for krbtgt/[email protected]
  Dec  7 14:03:12 --- last message repeated 1 time ---
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Client sent patypes: ENC-TS
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Too large time skew, client time 2014-12-07T13:53:17 is out by 595 > 300 seconds -- [email protected]
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
  Dec  7 14:03:12 192.168.1.79 kdc[57]: AS-REQ [email protected] from 192.168.1.71:49655 for krbtgt/[email protected]
  Dec  7 14:03:12 --- last message repeated 1 time ---
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Client sent patypes: ENC-TS
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Too large time skew, client time 2014-12-07T13:53:17 is out by 595 > 300 seconds -- [email protected]
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
  Dec  7 14:03:12 192.168.1.79 kdc[57]: AS-REQ [email protected] from 127.0.0.1:52952 for krbtgt/[email protected]
  Dec  7 14:03:12 --- last message repeated 1 time ---
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
  Dec  7 14:03:12 192.168.1.79 kdc[57]: AS-REQ [email protected] from 127.0.0.1:54789 for krbtgt/[email protected]
  Dec  7 14:03:12 --- last message repeated 1 time ---
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Client sent patypes: ENC-TS
  Dec  7 14:03:12 192.168.1.79 kdc[57]: ENC-TS pre-authentication succeeded -- [email protected]
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Client supported enctypes: aes256-cts-hmac-sha1-96, aes128-cts-hmac-sha1-96, des3-cbc-sha1, arcfour-hmac-md5, using aes256-cts-hmac-sha1-96/aes256-cts-hmac-sha1-96
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Requested flags: forwardable
  Dec  7 14:03:12 192.168.1.79 kdc[57]: TGS-REQ [email protected] from 127.0.0.1:49155 for host/[email protected] [canonicalize, forwardable]
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Searching referral for 192.168.1.79
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Server not found in database: krbtgt/[email protected]: no such entry found in hdb
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Failed building TGS-REP to 127.0.0.1:49155
  Dec  7 14:03:12 192.168.1.79 kdc[57]: TGS-REQ [email protected] from 127.0.0.1:57454 for krbtgt/[email protected] [forwardable]

  Hi Antoine,
  According to this log at least the time between the server and client is off.
  Dec  7 14:03:12 192.168.1.79 kdc[57]: Too large time skew, client time 2014-12-07T13:53:17 is out by 595 > 300 seconds -- [email protected]
  Verify that both the client and the server have the same time, otherwise kerberos will not work.
  Then open the terminal.app on your server and show us the output of:
  sudo changeip -checkhostname
  It will not change anything just give a reply about the hostname of your server.
  That will give us more info on how to fix your problem.
  Goodluck
  Jeffrey

• Why does my L2TP VPN connection never really contact the server?

  To be clear, this configuration is not on my own Mac, but on one belonging to someone I serve with technical support.
  I am configuring an L2TP over IPSec VPN connection on a MacBook Pro. This connection is to a ZyXEL USG 300 and works successfully from my iPad. (I do not have my own OS X device from which I can test the connection.)
  To the best of my knowledge, I have entered all of the information that is needed for the connection. Yet when I try to connect, all I receive is an indication that the server did not respond. In the USG logs, there is no indication at all of there being even a connection attempt. In a Terminal session on the Mac (verbose logging is enabled), I read:
  L2TP connecting to server 'xx.xx.xxx.xx' (xx.xx.xxx.xx)...
  IPSec connection started
  IPSec connection failed
  It appears to me as if the connection never leaves the Mac and is prevented or stopped by some fault in the system. The firewall is turned off.
  What suggestions do you have for identifying the problem?

  That's weird but you should be able to manually install the update like this:
  #Download a fresh copy from [http://www.mozilla.org/en-US/firefox/all/ here] - direct link (https://download.mozilla.org/?product=firefox-28.0-SSL&os=osx&lang=en-US)
  #Install the new version. For details, see [[How to download and install Firefox on Mac]]
  Usually this fixes this issue with automatic updates. There will be new version available starting next Tuesday. The automatic update will happen sometime over the following week or so.
  Let me know how it goes.<br>
  Thanks,<br>
  Michael

• File count alternating in folder when OS9 connects to Mac OS X server

  Greeting All,
  I have a few Macs running Mac Os 9.2.2 and they connect to a Mac Pro running OS X Server 10.4.7. The problem I am having is that if there are more that say 75 files in a folder that I open to view, the files in that folder keeps jumping and the file count keeps alternating. In other words, selecting a files from the folder is nearly impossible as the files keep moving in the folder. If I connect from a mac running OS X to the said Server running 10.4.7, I don't get this problem. Nor do i get the problem if I Connect the macs running OS 9 to a server running Appleshare Ip Server software I don't get the problem. Anyone knows how I can get around this problem?

  Just out of interest, what happens if you view the folder by List View ?
  I suspect with OS9 that you're trying to read the Desktop file to see how the folder icons are laid out, but there isn't one. So maybe you're trying to create one automatically. But OSX server on Intel goes "oh no you don't, create a resource fork ? what's that ?" or OSX server doesn't know how to create a desktop file for OS9 computers. Or you don't have file permissions to create a Desktop file on the OSX Server (then OS9 usually creates a temporary file on the OS9 System Folder Preferences folder).
  Your OSX Server license will come with support to help you answer this. I suspect a quick delve into the manual will show that it may just not be possible. My company is still on OSX 10.3.9 Server, but I've spent between 2 and 3 years getting everything off OS9 so I can't help you by trying things myself (the only OS9 bootable computer we have left is the one Server runs on).

• VPN connection from Mac at home to pc network at work

  Hope someone can help as I'm lost on this..... Was using a pc laptop and had basic settings to connect to my work network: IP address of the VPN concentrator (Cisco 3000), username and a password.
  Have now upgraded (at least I thought it was an upgrade!?) to MacBookPro 2.6 using 10.4.11 and tried to connect using Mac VPN with no success so tried IPSecuritas which seems like over kill but still no luck. Guess I am no use at networking!!
  Any advice would be most welcome.

  Last time I worked with the Cisco 30xx series (which, admittedly, was a few years ago), it only supported the Cisco client. Have you installed the Cisco client and tried?

• Use Open Directory on Mac OS X Server for Airport authentication?

  Is it possible to set up an Airport Extreme network so that only people with user names and passwords in the Open Directory on my Mac OS X Server can access it?
  I'm picturing a scenario where users would be prompted for the same user name and password they use for other network services when they attempt to join the wireless network.
  Our Airport Extreme access point is connected to the second Ethernet port on an original-model XServe that's running Mac OS X Server 10.3.9 (soon to be upgraded to 10.4.x).

  Is it possible to set up an Airport Extreme network
  so that only people with user names and passwords in
  the Open Directory on my Mac OS X Server can access
  it?
  I'm picturing a scenario where users would be
  prompted for the same user name and password they use
  for other network services when they attempt to join
  the wireless network.
  Our Airport Extreme access point is connected to the
  second Ethernet port on an original-model XServe
  that's running Mac OS X Server 10.3.9 (soon to be
  upgraded to 10.4.x).
  What you seem to be describing, is WPA2/Enterprise level security. This would require you to run some type of Radius Server on your XServe, and you would simply duplicate the name & password they use on the XServe on the Radius Server. BTW, this is considered one of the most secure methods of running a wireless network in the corporate world.
  You will however, have to research Radius & it's requirements, as I have not yet implemented that on my own system. HTH.
  Regards,
  Albert
  G4 QuickSilver01 OWC 1.47Ghz CPU 1.5GB RAM 740GB HDD   Mac OS X (10.4.3)   17" Aluminum PowerBook G4 1.33Ghz CPU 1.5GB RAM 80GB HD

• Mac OS 10.5 unable to connect to Mac OS 9 server

  Hi,
  I just recently updated some computers to Leopard (one had Tiger the other had 10.2.8) and I am having trouble connecting to a server that is on a Mac OS 9. I am able to find the server, but neither computer can connect. I get a -5019 AFP Parm error. Both computers had no problems connecting to the server before. Apple Talk is turned on.
  Any suggestions?
  Thanks!

  Still no luck. If I revert back to an older operating system I can still connect. I can ping the server in Leopard, no problem and a tcp port was recognized in a port scan. Every time I try to connect (go/connect to server) and I type in the IP address it brings up a box asking for my user name/password. I used to connect to this server as a guest, however that now gives me a connection failed message and a -41 error. If I use the same username/password that I use on a few other servers I get the connection failed message with a -36 error. If I type in whatever I want I get the connection failed message with a -5019 error. All other users who have not updated to Leopard can still connect to that server and I can connect to all other servers on my network. When I click browse this server is not recognized on the network.
  Any ideas?

• Has anyone had this problem with VPN iPad vpn connection could not validate the server certificate

  Has anyone had this problem with IPad 3 after upgrade to IOS 7,
  trying to to connect VPN , but I get this messag, "could not validate the server certificate".
  I am trying to connect to Oracle VPN.

  Has anyone found a solution for this yet? I am still getting the could not validate server certificate error. I have tried importing the entire certificate chain as well as importing each individual cert in the chain. My certificate works perfectly with the cisco vpn on my pc.
  This is my first experience owning an apple product, and I am very disappointed with the customer support that I have received. I tried calling the help line and no one would even attempt to answer my question. I was then told that the Mac "geniuses" wouldn't know either and that I may be able to find an answer on the message boards. So I am reaching out to the community...Has anyone been able to figure out how to resolve this issue or even the specific cause? Any help is appreciated.

• Browsing files with a VPN connection to a Win 2003 Server

  Hello,
  I am getting connected to the VPN according to the VPN option in the settings icon in my Ipad.
  Now, anyone knows how could a I get access to the files in the server with my IPAD, like I have with the mac finder or win explorer in a MAC or PC
  thanks for the help

  I have tried it with no success. I am able to connect to other machines when in the same network! Like home wifi but as soon as i get connected to the office VPN, is not working.
  Maybe it's me. Usually for example with my pc i get into de VPN! Then open the win explorer, type the server ip address just like 10.0.0.1, and that's It.
  Is there anything am i doing wrong or should be done differently with an Apple? I am new with Apple.

• Can't connect to Mac Mini (ML Server)

  I have a Mid-2009 Mac mini that's running the latest Mac OS X 10.8 Server. It's connected to my TV via HDMI.
  For a long time, I had no issues connecting to it via Screen Sharing, SSH or AFP but recently all three will mysteriously fail. I know the machine is working because I stream iTunes content to my Apple TV and it's hosting a couple of web sites that it serves up just fine. The only attached peripheral is a Drobo S (2nd Gen) attached via FW 800. Drobo Dashboard and the firmware are completely up-to-date.
  When it stops working, I have no alternative but to A) wait until I get home and B) force the machine off and reboot it. After a reboot, Screen Sharing, AFP and SSH all work fine for a while. It seems to conveniently fail when I'm away and need to get to it.
  Note that it fails on all three protocols from outside AND inside. So this isn't a network routing or port forwarding issue. I'm a Mac IT professional with 15 years under my belt, so I think I know what I'm doing in that regard. Like I said it's worked fine for years and it's only been lately that these failures have been happening.
  I can't seem to identify any rhyme or reason for this. It's a fairly clean installation with almost no 3rd party software installed on it.
  Any help or suggestions would be greatly appreciated.

  "Screen Sharing is currently being controlled by the Remote Management Service"
  I've been fidgeting between the Server.app server Settings tab and the Screen Sharing checkbox in System Preferences Sharing pane all day.
  I had tried "Share Screen" via Finder. After I tried "Share Screen" via Server.app from my client computer I noticed the above warning message when Screen Sharing in the server's System Preference Sharing pane was highlighted. I'm not sure which is cause or effect.
  Everything is checked on the server "Settings" tab in Server.app on the server. Only "FIle Sharing," "Remote Login" and "Remote Management" are checked on the Sharing pane in System Preferences on the server.
  Everything is checked on the server "Settings" tab in Server.app on the client. In this case, "Allow remote administration using Server" is checked and grayed out. "Screen Sharing" is checked on the Sharing pane in System Preferences on the client. (It may not have anything to do with a successful screen share connection, but it is on.)
  Everything is now working better than expected. Thanks to you both for your help!

• Please help - Connection Refused - Mac to Windows Server 2012

  I have downloaded MS Remote Desktop onto my brand new Macbook Air OS X and have tried to connect to my school network - which when logged in says it is "Windows Server2012"
  However each time I try to log in it simply says connections refused.  Nothing more.
  Not sure what I can do next.
  Thank you for any help,
  Laura

  Hi Laura,
  Thank you for posting in Windows Server Forum.
  Are you trying to remote desktop with IP address or hostname?
  Please try both alternate way and check is there any difference between them. Also as suggested by Manouchehr Omari, please see that you have remote desktop enabled on server 2012 and related RDP port (3389) opened for remote connection to take place under
  firewall setting. If possible for a try disable firewall and check. You can get more troubleshooting information from beneath link.
  Remote Desktop Client on Mac: FAQ
  http://technet.microsoft.com/en-in/library/dn473006.aspx
  Hope it helps!
  Thanks.
  Dharmesh Solanki
  TechNet Community Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• 10.6.1 Server - cannot prevent authenticated users from creating a blog

  I have a brand new Snow Leopard (10.6.1) 2.26 Ghz quad core Xserve with 12Gb RAM that will be used for web collaboration services. I've currently set up Wiki and Blog services with a group membership to allow creating wikis/blogs. The reason for this is for staff development purposes with the plan to add people into the group as they are trained. The process to set it all up was very simple, however, I'm having an issue preventing authenticated users from creating a personal blog. Although I can prevent the creation of wiki's to members of a group easily, any authenticated user on the server can log into "My Page" and will be able to create a blog. I've gone to server admin>choose the server>choose the "access" icon and set the column "for selected services below" (blog) to "allow only users and groups below" (the group) and it still doesn't prevent them from making a blog page. In WGM for the group on the "Basic" tab, the "enable the following services for this group" has only the choice of "none" and therefore since the site isn't showing as a choice, the Wiki, Blog, Calendar and Mailing List is grayed out. I've seen another thread that states in 10.6 that option for setting the service acl in the group settings of WGM is unavailable. Does anyone know a fix for my problem of security access for a "My Page" blog or is it a possible bug in Snow Leopard? Right now my only workaround is to remove the users access and enable it as they are trained. This isn't an ideal fix, however, because we have some users who want to limit their wiki or blog to authenticated users only, not public access. Any help will be greatly appreciated.

  Thanks for the suggestion, but that would prevent all users from creating personal blogs. I was hoping to be able to have a group of users that can create a personal blog outside of the blog attached to a wiki.

• Help with 10.4.5 VPN connection using PPTP to Windows 2003 Server

  Hi,
  I've looked on the discussions for an answer to this but have had no luck so far, can anyone help?
  I'm trying to connect my 10.4.5 PB to my Wn2k3 server (with RRAS) using PPTP VPN, however I keep getting stuck at the Negotiating phase of the connection and finally get this error in OSX Internet Connect:
  Could not negotiate a connection with the remote PPP server. Please verify your settings and try again.
  I can connect from my Win XP laptop so no issues with the router etc, do I need to make any changes to the server config?
  Thanks,
  Sahajesh.
  12" PB (G4)   Mac OS X (10.4.5)  

  Resolved elsewhere.