Hi
Hope you are good, Myself, Priyank, since many days we are trying to resolve one error of Radius connectivity but we failed to do so. we tried searching on internet but there is no solution. the complete scenario is we have two different forest with Trust and we have placed two NPS for domain. we are using Aruba 7010 as a NAS. when we connect directly from NAS to NPS, we are getting authenticated through the Connection and Network policy. the moment we introduce proxy in-between the connection is not getting completed. have tried enough to find out the solution. NPS event log says user is authenticated with 6272 and 6278 . Proxy event says user discarded with 6274 reason code 118.
Event ID 6278
Network Policy Server granted full access to a user because the host met the defined health policy.
User:
Security ID: INFOMEDIA18\priyank.sheth
Account Name: priyank.sheth
Account Domain: INFOMEDIA18
Fully Qualified Account Name: infomedia18.in/INDIA/External Users/WEB18 Infra Team/Priyank Sheth
Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
OS-Version: -
Called Station Identifier: 000B869B46D7:NW18
Calling Station Identifier: 1430C6E86D85
NAS:
NAS IPv4 Address: xxx.xxx.xxx.26
NAS IPv6 Address: -
NAS Identifier: Network18-A
NAS Port-Type: Wireless - IEEE 802.11
NAS Port: 0
RADIUS Client:
Client Friendly Name: NW18-Proxy
Client IP Address: xxx.xxx.xxx.125
Authentication Details:
Connection Request Policy Name: PUB-Auth
Network Policy Name: WLAN-MGMT
Authentication Provider: Windows
Authentication Server: DADAR-ADC.infomedia18.in
Authentication Type: PEAP
EAP Type: Microsoft: Secured password (EAP-MSCHAP v2)
Account Session Identifier: -
Quarantine Information:
Result: Full Access
Extended-Result: -
Session Identifier: -
Help URL: -
System Health Validator Result(s): -
Event Id 6272
Network Policy Server granted access to a user.
User:
Security ID: INFOMEDIA18\priyank.sheth
Account Name: priyank.sheth
Account Domain: INFOMEDIA18
Fully Qualified Account Name: infomedia18.in/INDIA/External Users/WEB18 Infra Team/Priyank Sheth
Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
OS-Version: -
Called Station Identifier: 000B869B46D7:NW18
Calling Station Identifier: 1430C6E86D85
NAS:
NAS IPv4 Address: xxx.xxx.xxx.26
NAS IPv6 Address: -
NAS Identifier: Network18-A
NAS Port-Type: Wireless - IEEE 802.11
NAS Port: 0
RADIUS Client:
Client Friendly Name: NW18-Proxy
Client IP Address: xxx.xxx.xxx.125
Authentication Details:
Connection Request Policy Name: PUB-Auth
Network Policy Name: WLAN-MGMT
Authentication Provider: Windows
Authentication Server: DADAR-ADC.infomedia18.in
Authentication Type: PEAP
EAP Type: Microsoft: Secured password (EAP-MSCHAP v2)
Account Session Identifier: -
Logging Results: Accounting information was not written to any data store.
Quarantine Information:
Result: Full Access
Session Identifier: -
Event ID 6274
Network Policy Server discarded the request for a user.
Contact the Network Policy Server administrator for more information.
User:
Security ID: NULL SID
Account Name: priyank.sheth
Account Domain: -
Fully Qualified Account Name: -
Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
OS-Version: -
Called Station Identifier: 000B869B46D7:NW18
Calling Station Identifier: 1430C6E86D85
NAS:
NAS IPv4 Address: xxx.xxx.xxx.26
NAS IPv6 Address: -
NAS Identifier: Network18-A
NAS Port-Type: Wireless - IEEE 802.11
NAS Port: 0
RADIUS Client:
Client Friendly Name: Network18-A
Client IP Address: xxx.xxx.xxx.26
Authentication Details:
Proxy Policy Name: PUB-Con
Network Policy Name: -
Authentication Provider: RADIUS Proxy
Authentication Server: xxx.xxx.xxx.101
Authentication Type: -
EAP Type: -
Account Session Identifier: -
Reason Code: 118
Reason: The remote RADIUS (Remote Authentication Dial-In User Service) server returned an unreadable response.
Can you pls. help me in this.
Thanks
Regards