Hi
We have implemented dot1x into our wireless infrastructure. 2 Radius Proxies sending Authentication Requests to Radius Servers. We setup NPS accounting on Our proxies and Radius Servers to log on SQL Server and local Text File.
Authentication Works fine.
Accounting isnt logging all of the information. We need to log End Client's Device IP address plus whole bunch of information available on Cisco WLC accounting log.
We also did some wireshark capturing on NPS proxies that may help :
1-AP (WLC) Sends Accounting Request to Proxy. Sourceport = Random (1053,1062,1052) / Destination Port = 1813 (Radius Accounting)
2-Proxy sends Accounting Response to AP(WLC). Source Port= 1813 / Destination Port = Source Port of Step 1. Ex:1053
3-AP(WLC) Sends ICMP Port unreachable , Source Port = 1813 / Destination Port = Source Port of Step 1. Ex:1053
Image will be in next post due to 2 image per post policy.
Any help will be appreciated.