Mikrotik Radius two connections from one account?

A

Arthur Arthur2017-07-20 14:47:58

Active Directory

Arthur Arthur, 2017-07-20 14:47:58

Good day comrades! Organized the following structure:
Installed NPS server on Windows Server 2012R2, created network access policies for remote clients. I set up mikrotik rb2011 as a RADIUS client, set up an SSTP server on it, clients will log in with a domain account well. The only thing that does not suit me now is that you can connect from different devices at the same time from one domain account and the connection will work on all devices.
Thought for reflection, who starts up the second connection, Mikrotik or NPS. Is it possible to somehow limit one user to one connection, as if the user was not in AD but in Mikrotik itself?
Thank you.

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

V

Vladimir Zhurkin, 2017-07-20
@icCE

Thought for reflection, who starts up the second connection, Mikrotik or NPS. Is it possible to somehow limit one user to one connection, as if the user was not in AD but in Mikrotik itself?

The second connection is made by Mikrotik himself. I looked at the settings, only l2tp has one session per host.
Yes to linit only one profiles. But I think these settings will only work on ppoe and pptp (this is the option).
With such a question, it is better to go to the website of mikrotik themselves, they will answer much faster. If the device is new, you can write such a question directly to support, you can also write in Russian, it will only take longer to answer.
PS On the other hand, authorization goes through the radios, there should definitely be a check that the user is active and not start up from the side of authorization. Network Policy Properties:
https://technet.microsoft.com/en-us/library/cc7541...