Well, this weekend I decided to make an effort to get VPN services working with ISA 2004.  And it worked!

 

It was actually pretty easy too.  ISA 2004 made it a snap to setup, and I found an article on Technet telling me EXACTLY what certificates to get to for the computers to allow L2TP and EAP to work.  The only snag I ran into (and it was a MAJOR snag) was getting the client certs.

 

For some reason when I try and get a certificate for any user, an error about "the specified user could not be found".  Since I was in a hurry, and only had one user account that needed a certificate, I ended up just having that user login to the CA computer directly, where the certificate issue worked fine.  Wierd...

 

The other problem I ran into was that the WinXP VPN client wouldn't work with cerficates created using the "Windows Server 2003 User" template.  In fact, the only certificate template I could use that resulted in a useable configuration was the Administrator template.  Again, wierd...

 

So there are a few issues that need to be looked into to get everything working perfectly.  In the meantime, at least I can connect in over the VPN and enjoy remote / WLAN access.