This article describes how to change the default domain that
is used by the Routing and Remote Access service or by Internet Authentication
Service (IAS) to authenticate users.
Mostly, users log on to
computers that are running Microsoft Windows 2000 or Microsoft Windows Server 2003 by using a dial-up
connection or by using a virtual private network (VPN) connection. Users use a user
name, a password, and a domain name when they log on. Windows 2000-based computers and Windows Server 2003-based computers that run
Routing and Remote Access or IAS may not be able to authenticate users if they omit one or more of these credentials. By default, if a user does not specify a domain name, Routing and Remote Access and IAS try to authenticate user accounts
against the domain that the server belongs to.
If you use Registry Editor incorrectly, you may cause serious
problems that may require you to reinstall your operating system. Microsoft
cannot guarantee that you can solve problems that result from using Registry
Editor incorrectly. Use Registry Editor at your own
You can change the default domain by modifying a
registry key on the server that is running Routing and Remote Access
or IAS. To do so, follow these steps:
- Click Start, and then click Run.
- In the Open box, type
regedit, and then click OK.
- Locate and then click the following registry
- In the right pane, right-click the
DefaultDomain registry key, and then click
- In the Value data box, type
RRAS or IAS, and then click
By default, Routing and Remote Access or IAS can authenticate local user
accounts on the server where they run. To turn on this authentication, follow these steps, but in step 5, type the computer name for the server that is running Routing and
Remote Access or IAS instead of RRAS