NAP SoH
Hi all,I have implemented 802.1x with NAP enforcement in our network.Things are working fine as expected. I am facing the following issue.Everyday on first system boot, PCs are declared as NAP...
View Article"napagent" Service Not starting - Access Denied
Hi,I have deployed 802.1x with NAP enforcement in our network.The required windows services are started in the domain machines through Domain group policy.Network Access Protection AgentEapHost,...
View ArticleDeploying NAP 802.1x Enforcement w/ 3com 4500 or 5500
Hi!I try to get the 802.1x Step-by-Step Guide to work in my Test Lab. I followed the instructions and everythings seems to be OK as my switch (3Com 4500) gets RADIUS Accept-Access from NAP Server (the...
View ArticleDuplicate User ID in Multiple Domains
Hi all,If I have the following scenario for a WPA2/TLS environment,Forest A--Domain A-----User = DOMAINA\QW12345--Domain B-----User = DOMAINB\QW12345When a wireless connection is established using TLS,...
View ArticleIAS Policies (CISCO & JUNIPER)
I have IAS (2003) setup to authenticate a user for login to Cisco switches with a Vendor-Specific Attribute for privilege 15. This user belongs to a particular AD group that when it matches provides...
View ArticleIAS certificate expired issue
Hi Team, can anyone advise on IAS expire issue? We are trying to renew the certificate since it has already expired.when we renew the certificate, from console root- certificate (local computer)--...
View ArticleWhat is the best practice to give a user permission to “Join to the Domain”?
I am not sure what the best practice to give a user permission to join to the domain?Is it just giving delegate permission (Take Ownership or WRITE_DAC) on the Computer Object? or some other way which...
View ArticleNPS Policy Processing Order Automation
Hi all,is there any way to use powershell/cmd/keyboard shortcuts to speed up process of prioritizing policies in NPS policies hive?It's annoying every time with a multiple policy environment to make...
View ArticleMicrosoft NPS Radius Server with SQL Server - need to have on SQL Server, the...
Hello,I just configured a NPS Radius Server on Windows Server 2012 with SQL Server for the logs.on SQL Server, the XML format give some fields like User-Name,Called-Station-ID,...
View ArticleLimit concurrent Connections
Hello, I'm not sure that this Forum is the correct one... We have a big WLAN infrastructure authenticated by NPS / Radius (on Windows 2008 R2). We want to allow our Users to use private devices in a...
View ArticleType of certificate for EAP-TLS certificate based authentication
We would like to set up both domain computers and non-domain computers to access our wireless LAN without the need for the user to enter their domain login credentials and remember to update the...
View ArticleAllow Client To Change Password After It Has Expired Option
People who use devices not joined to our domain do not get the 14 day password expiration warnings specified in group policy that users of domain-joined PCs get, so their first indication that their...
View ArticleNPS User Authentication Policy WIndows 2012
Ok, I'm having some difficulty getting NPS working when I've setup the client computer to use user authentication. I've got my Radius Client(s) setup and working, same for my Connection Request...
View ArticleNPS SQL missing reason-code in Server 2012 R2
HiIt seems like several SQL fields in the 2012 R2 version of NPS logging has been removed.Amongst others the Reason-Code field.Most people only refer to log files to see why someone can't connect to...
View ArticleCannot add CA server to HRA
Hi,I am trying to configure HRA role service on W2K8 R2. I try to add a certificate authority server but I receive an error "Please enter a valid cerificate authority". I select Browse... so I can...
View ArticleMigrate from Cisco ACS to Microsoft Equivalent for Wireless 802.1x?
We have Cisco ACS 4.2 with PEAP MSCHAPv2 running on Server 2003 which allows both automatic computer authentication of our domain joined laptops and manual user authentication via the users domain user...
View ArticleHow to provide detailed QuarantineSystemHealthResult's for audit events
Hi!I've written a SHV and SHA component based on the SDK code.Everything is working find, but on the server side I get no detailed error information included in audit events (e.g. event 6278). In the...
View ArticleNAP "Reporting Mode" Still Blocks DHCP
I am testing out NAP for DHCP an I am trying to set up "reporting mode."I see tons of references to suggesting use of reporting mode, but I don't see exactly how that is set up.I am assuming it is set...
View ArticleNPS PEAP MSChapv2 Access-Challange Problem
Hi, i hope you can help me. We have a wlan infrastructure with PEAP and MSCHAPv2authentication. That still works fine internally. As we participate in the Eduroam, you can log in at other academic...
View ArticleServer 2012 Built-In IPSec VPN & RAS & HyperV-Switch & Netgear Pro Safe...
Hello,i try to setup a IPSEC VPN (Site-by-Site or if not possible Client-BySite) between a Netgear Pro Safe Router and Windows Server 2012.The Problem: Tunnel is up and running, but no Ping, no traffic...
View Article