Hello,
I'm trying to get a 2nd NPS server working on our trusted forests. One server works, but the 2nd one gives me errors like this I've xxx'ed out company specific information:
Network Policy Server denied access to a user.Contact the Network Policy Server administrator for more information.
User:
Security ID: xxx
Account Name: xxx
Account Domain:xxx
Fully Qualified Account Name:xxx
Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name:-
OS-Version: -
Called Station Identifier:000B86B7A15F
Calling Station Identifier:F02475AF11E8
NAS:
NAS IPv4 Address:10.208.0.20
NAS IPv6 Address:-
NAS Identifier:10.208.0.21
NAS Port-Type:Wireless - IEEE 802.11
NAS Port: 0
RADIUS Client:
Client Friendly Name:xxx
Client IP Address:10.208.0.2
Authentication Details:
Connection Request Policy Name:Secure Wireless Connections
Network Policy Name:Secure Wireless Connections
Authentication Provider:Windows
Authentication Server:xxx
Authentication Type:EAP
EAP Type: Microsoft: Smart Card or other certificate
Account Session Identifier:-
Logging Results:Accounting information was written to the local log file.
Reason Code: 23
Reason: An error occurred during the Network Policy Server use of the Extensible Authentication Protocol (EAP). Check EAP log files for EAP errors.
I have mirrored the configuration from the working server to the non-working server and re-issued all the certs for the non-working server. I'm not finding anything particularly useful in the In* logs. Would anyone be willing and able to shed some light on this for me please?
thank you in advance.