4 Replies Latest reply: Feb 26, 2014 12:01 AM by Fredriksson
DIGITALAPPEAL Level 1 Level 1

Please help.  I have a Mac OS X 10.8.2 Server and I want to remotely VPN onto the network to access files on the sharepoints.  The correct ports are forwarded on the router.  My MacBook Pro says it's connecting but then says authentication fails even though the username and password are correct.  The server VPN log sees the incoming connection but then:

 

2013-01-22 23:15:22 ESTIncoming call... Address given to client = 192.168.0.248

Tue Jan 22 23:15:22 2013 : Directory Services Authentication plugin initialized

Tue Jan 22 23:15:22 2013 : Directory Services Authorization plugin initialized

Tue Jan 22 23:15:22 2013 : PPTP incoming call in progress from 'XXX.XXX.XXX.XXX'...

Tue Jan 22 23:15:22 2013 : PPTP connection established.

Tue Jan 22 23:15:22 2013 : using link 0

Tue Jan 22 23:15:22 2013 : Using interface ppp0

Tue Jan 22 23:15:22 2013 : Connect: ppp0 <--> socket[34:17]

Tue Jan 22 23:15:22 2013 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x22dda091> <pcomp> <accomp>]

Tue Jan 22 23:15:22 2013 : rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x78821497> <pcomp> <accomp>]

Tue Jan 22 23:15:22 2013 : lcp_reqci: returning CONFACK.

Tue Jan 22 23:15:22 2013 : sent [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x78821497> <pcomp> <accomp>]

Tue Jan 22 23:15:22 2013 : rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x22dda091> <pcomp> <accomp>]

Tue Jan 22 23:15:22 2013 : sent [LCP EchoReq id=0x0 magic=0x22dda091]

Tue Jan 22 23:15:22 2013 : sent [CHAP Challenge id=0x3e <7314140f41344d6a375f080642640909>, name = "server.suresearch.private"]

Tue Jan 22 23:15:22 2013 : rcvd [LCP EchoReq id=0x0 magic=0x78821497]

Tue Jan 22 23:15:22 2013 : sent [LCP EchoRep id=0x0 magic=0x22dda091]

Tue Jan 22 23:15:22 2013 : rcvd [LCP EchoRep id=0x0 magic=0x78821497]

Tue Jan 22 23:15:22 2013 : rcvd [CHAP Response id=0x3e <5f39f163613614ed27da0f8777da7d36000000000000000038894de8e099af55422f067242d4c1 28fc7c8e9ecd2a3b3f00>, name = "XXXXXXXX"]

Tue Jan 22 23:15:22 2013 : DSAuth plugin: unsupported authen authority: recved Kerberosv5;;XXXXXXXXX@LKDC:SHA1.BF765F7013AD75ECDF81A04EAAD4C053C0FFF26A;LKDC:S HA1.BF765F7013AD75ECDF81A04EAAD4C053C0FFF26A, want ApplePasswordServer

Tue Jan 22 23:15:22 2013 : DSAuth plugin: MPPE key required, but its retrieval failed.

Tue Jan 22 23:15:22 2013 : sent [CHAP Failure id=0x3e "S=C252E14ED715DE48E6214FC7BEDD36E13920609C M=Access granted"]

Tue Jan 22 23:15:22 2013 : CHAP peer authentication failed for XXXXXXXX

Tue Jan 22 23:15:22 2013 : sent [LCP TermReq id=0x2 "Authentication failed"]

Tue Jan 22 23:15:22 2013 : Connection terminated.

Tue Jan 22 23:15:22 2013 : PPTP disconnecting...

Tue Jan 22 23:15:22 2013 : PPTP disconnected

2013-01-22 23:15:22 EST   --> Client with address = 192.168.0.248 has hungup

 

 

Can anyone please point me in the right direction with this....


OS X Server
  • icvalper Level 1 Level 1

    Did you get the solution to this? I have the same problem. Thanks.

  • John Lockwood Level 6 Level 6
    expertise.desktops
    Desktops

    The usual cause of this type of error is a missing/bad MPPEKeyAgent user account in your Open Directory.

     

    Follow the instructions here to generate a new replacement account.

     

    http://support.apple.com/kb/HT3104

  • Patrick Sneyers Level 1 Level 1

    This isn't Lion, however... Similar problem on 10.9.1 Server.

     

    I migrated a 10.8 ODmaster to 10.9.1 (archived, setup new server with DNS and host name to match, restored from archive). Everything works, except VPN_PPTP...

     

    DSAuth plugin: MPPE key required, but its retrieval failed.

     

    This old thread provided a solution. Still works in 10.9 server!

    https://discussions.apple.com/thread/1286988

     

    Delete the user "VPN MPPE Key Access User" (In Server.app, choose view -> Show System Accounts)

     

    Add a new one:

    sudo vpnaddkeyagentuser /LDAPv3/127.0.0.1

     

    Restart VPN service.

    PPTP VPN works as before...

  • Fredriksson Level 1 Level 1

    You're my hero! I've just updated OS X Server from 3.0.2 to 3.0.3 in OS X Server 10.9.2 and PPTP wasn't working anymore... I've been searching a solution for hours!

     

    Many thanks!

     

    Patrick Sneyers wrote:

     

    This isn't Lion, however... Similar problem on 10.9.1 Server.

     

    I migrated a 10.8 ODmaster to 10.9.1 (archived, setup new server with DNS and host name to match, restored from archive). Everything works, except VPN_PPTP...

     

    DSAuth plugin: MPPE key required, but its retrieval failed.

     

    This old thread provided a solution. Still works in 10.9 server!

    https://discussions.apple.com/thread/1286988

     

    Delete the user "VPN MPPE Key Access User" (In Server.app, choose view -> Show System Accounts)

     

    Add a new one:

    sudo vpnaddkeyagentuser /LDAPv3/127.0.0.1

     

    Restart VPN service.

    PPTP VPN works as before...