VPN and IPSEC

I have set up a vpn server using win2003. I would like to
authenticate users using IPSec but without a certificate
or pre shared key. Is this possible?
I got it working using a pre shared key and pptp works
fine, however I would like to deploy to remote users, all
using windows XP Pro on their laptops. I don't want them
to deal with certificates or pre shared keys but would
like to use ipsec instead of pptp.
When I try to connect I get the following error. "Error
781: The connection requires a certificate, and no valid
certificate was found."
It looks like the client has this requirement as I have
tried to connect with the laptop disconnected from the
network and I get the same error. Any help is appriciated

Preshared key and Certs are your only options.
I'd consider rolling out a customized vpn package created using the
Connection Manager Admin Kit in win2k3. There should be some relavent
documentation for l2tp/ipsec deployment in the online help as well as
www.microsoft.com/vpn.

--
David
Microsoft Windows Networking
This posting is provided "AS IS" with no warranties, and confers no rights.

"TomS" <(E-Mail Removed)> wrote in message
news:041f01c3c03f$f66d3290$(E-Mail Removed)...
>I have set up a vpn server using win2003. I would like to
> authenticate users using IPSec but without a certificate
> or pre shared key. Is this possible?
> I got it working using a pre shared key and pptp works
> fine, however I would like to deploy to remote users, all
> using windows XP Pro on their laptops. I don't want them
> to deal with certificates or pre shared keys but would
> like to use ipsec instead of pptp.
> When I try to connect I get the following error. "Error
> 781: The connection requires a certificate, and no valid
> certificate was found."
> It looks like the client has this requirement as I have
> tried to connect with the laptop disconnected from the
> network and I get the same error. Any help is appriciated