Remote Access Service (RAS) is more than just a tool for exchanging files and collecting mail. Using it is the same, in effect, as being locally connected to the LAN. This requires more safeguards. The first place to set up RAS users is through the RAS Administrator, shown in Figure 6.14. Select the Permissions option under the Users menu. By default, users are not permitted to sign on via RAS. You need to check the Grant Dialin Permission to User box (see Figure 6.15). The other choices—No Call Back, Set by Caller, and Preset—are graceful security enhancement features. After a user has been authenticated, RAS can hang up and call him back, either at a preset telephone number or at one at the caller's choice.