- May 28, 2014
A virtual private network (VPN) is a point-to-point connection across a private or public network, such as the Internet. It enables a computer to send and receive data across shared or public networks as if it is directly connected to the private network, while benefiting from the functionality, security and management policies of the private network.
To make VPN profile management easier for end user, there is a new intuitive modern user interface to manage VPN profiles in Windows 8.1. This new interface resides in PC Settings and provides a unified experience to create, edit, and remove native as well as 3rd party VPN clients.
Creating a VPN profile requires only the server information. The Windows operating system automatically discovers authentication methods and tunnels when it connects, which provides a seamless experience for creating a VPN.
This tutorial will show you how to set up and add a virtual private network (VPN) connection profile in Windows 8.1.
Be sure to read the set up instructions for the VPN server service you are connecting to for any extra steps that they may require.
Depending on the VPN provider you selected in step 2, this option may be grayed out.
User name and password- When user selects this option, the VPN client negotiates the username-password based authentication methods with the server. Client will be able to negotiate MSCHAP v2, EAP-MSCAHPv2, PEAP with MSCHAPv2 as inner method, EAP-TTLS with inner method as PAP (for non-domain joined only) and EAP-TTLS with inner method as MSCHAPv2 (for domain joined only) with the VPN server. Once the user selects this authentication method, the user has the option of entering User name and password (step 7) in the UI itself.
Smart Card – This authentication method translates to Smart Card based authentication using EAP-TLS.
One-time password – Select this authentication method for using RSA One-time password. This authentication method translates to TTLS-PAP authentication protocol. TTLS-PAP is used to transport the token and the password entered by the user to the VPN server which is configured with RSA’s Authentication Manager Server as the RADIUS server. The Authentication Manager terminates TTLS-PAP and is capable of interpreting the credentials to contain the RSA token and password. More details can be found here.