PDA

View Full Version : Logging onto a domain using a virtual machine remotely via VPN?

Feek
07-08-2009, 23:14
I have a Windows XP VM running on my Mac Pro here which I use to access work. I log into the VM with a local admin account, run the Cisco VPN Client (Version 4.8.01.0300) and away I go. I can access our systems, log on to our thin clients with Citrix and do most of what I need to do.

However, I'd really like to log onto the VM with a domain account. I've joined the domain once I was logged on with my local account and connected via the VPN.

Is this possible? I don't think it is. I need to log in to be able to connect to our network and the only way to do that is locally. I can't make a VPN connection without logging in.

Am I stuffed, or is there a way around this (without physically taking my machine to work and connecting it to the network directly)?
Mark
07-08-2009, 23:18
You can do it with the Windows VPN client because that had the option to connect on log in (with which you can use a domain account). Don't know enough about the Cisco client to know if it integrates sufficiently to allow that.

Alternatively, if you log out, does it disconnect? I'd assume it does but worth checking. AFAIK you can't use Fast User Switching with a domain so leaving one account logged in while logging on to the domain with another probably isn't an option either.
Feek
07-08-2009, 23:24
Wayhay, look what I found:
http://ocukroguesgallery.com/feek/temp/Work-20090807-232418.png

That should do it, if nothing else then I can logon locally, make the connection and then log off, then log back on with my domain account.
Mark
07-08-2009, 23:25
Sorted. \o/
Feek
07-08-2009, 23:36
Well and truly sorted!
Reboot, press ctrl-alt-del and up pops the Cisco box...
http://ocukroguesgallery.com/feek/temp/tada-20090807-233619.png

Fantastic :)
Daz
07-08-2009, 23:47
Fwiw, so long as you haven't disabled cached credentials in AD, you shouldn't need to have the con connected at login, once you'be made that first successful logon anyway.
Mark
07-08-2009, 23:50
Indeed. I used to rely on that quite a lot when I had my home PCs joined to the work domain (I don't do that anymore as there are very few cases where I need to be joined to the domain at all).

PS - There's one exception. If you change your password on the domain the cached credentials would be stale. Good time to log into the domain at that point. :)
Feek
08-08-2009, 00:04
Aye, our credentials are cached, it's the password thing that would cause a problem so it's good to be able to do it both ways.