User guide
Remote Annex Server Tools for Windows NT
®
User Guide
Chapter 4 Using Security Features
4-6
You need to set certain parameters to enable each type of security
described here. Once you set parameters, each user will have to enter
a user name and password. Remote Annex Server Tools for Windows
NT
®
grants access only to those user names and passwords listed in
any Windows NT
®
global group you selected in the Remote Access
Groups tab window.
PPP Security
Point-to-Point (PPP) provides a link between hosts that carry IP, IPX, and
ARA protocols. After PPP negotiates Link Control Protocol (LCP)
options, the hosts at either end of the link authenticates their identities
using PAP or CHAP security protocols.
• PAP is a two-way handshake in which hosts exchange user
names and passwords in clear text.
• CHAP is a three-way handshake that uses a secret token defined
in the acp_userinfo file to authenticate users.
▼ To configure Windows NT® security for PPP links, you must set the
ppp_security_protocol parameter.
• If you set ppp_security_protocol to pap, the system uses
Windows NT
®
user names and passwords for authentication.
• If you set ppp_security_protocol to chap–pap, the system first
requests CHAP security. If CHAP is not acknowledged, it
requests PAP.
CHAP does not authenticate Windows NT
®
user names,
passwords, or remote access groups. It authenticates
based on user names from the acp_userinfo file and the
CHAP token.