Hi,
We have a NPS server configured running on Server 2008 R2. All our existing Windows 7 clients are working without any issues. We started putting up Windows 10 and started seeing that when the user tries to RDP to the device, it gets disconnected. Looking under NPS event logs, we found that Event ID 6273. It says the following
Network Policy Server denied access to a user.
Contact the Network Policy Server administrator for more information.
User:
Security ID:
DomainName\DeviceName$
Account Name:
host/Hostname with FQDN
Account Domain:Domain Name
Fully Qualified Account Name:Domain/Computers/Windows 10/Hostname
Client Machine:
Security ID:
NULL SID
Account Name:
-
Fully Qualified Account Name:-
OS-Version:
-
Called Station Identifier:18-8b-9d-f4-d6-b0:BPAccess
Calling Station Identifier:f0-d5-bf-aa-4d-99
NAS:
NAS IPv4 Address:xxx.xxx.xxx.xxx
NAS IPv6 Address:-
NAS Identifier:Cisco_9b:7a:e4
NAS Port-Type:Wireless - IEEE 802.11
NAS Port:
1
RADIUS Client:
Client Friendly Name:Wireless-LAN-Controller-1
Client IP Address:xx.xx.xx.xx
Authentication Details:
Connection Request Policy Name:Secure Wireless Connections
Network Policy Name:Connections to other access servers
Authentication Provider:Windows
Authentication Server:Server Name
Authentication Type:EAP
EAP Type:
-
Account Session Identifier:35383534306265312F66303A64353A62663A61613A34643A39392F333137323538
Logging Results:Accounting information was written to the local log file.
Reason Code:
65
Reason:
The Network Access Permission setting in the dial-in properties of the user account in Active Directory is set to Deny access to the user. To change the Network Access Permission setting to either Allow access or Control access through NPS Network Policy,
obtain the properties of the user account in Active Directory Users and Computers, click the Dial-in tab, and change Network Access Permission.
Even though my Wifi Profile through GPO is configured PEAP for Authentication type, but the logs shows as EAP.
Can someone please help me
Regards,V