Quantcast
Channel: Network Access Protection forum
Viewing all articles
Browse latest Browse all 1875

NPS not authenticating members of a group in different domain.

$
0
0

Hi,

We have two domains in the the same forest Domain A and Domain B. There are full trust relationships in place between the domains. Ultimately the plan is that Domain B will be fully migrated to A and be retired.

There is an NPS server located in Domain A. 

Wireless_Users_A is a group in Domain A and Wireless_users_B is a group in Domain B.

Wireless_Users_B is also a member of Wireless_Users_A.

There is a rule in place to permit access to members of Wireless_Users_A. However when a user from Domain B who is a member of Wireless_Users_B tries to authenticate it does not appear to hit the rule.

If I add a rule in to permit members of Wireless_Users_B it works and the user is authenticated. So I think the trust relationships are ok. I have a workaround in that there's an OR in place to check both groups. Really, I'm just wondering if this is expected behaviour or is there something missing.

We're running Windows Server 2008

Cheers,

Ed.



Viewing all articles
Browse latest Browse all 1875

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>