NPS Reason Code: 266

-

hi,

i have issue radius server running on windows server 2008. 

my installation contains:

active directory

network policy , access services/certificate services

ruckus zonedirector 1100

the issue in following. android , mac devices can authenticated entering username , password of account exists in ad. when try connect windows workstation/device same user account authentication fails. using peap , ms-chapv2.

in logs of radius server following message:

log name:      security
source:        microsoft-windows-security-auditing
date:          4/17/2013 2:43:35 pm
event id:      6273
task category: network policy server
level:         information
keywords:      audit failure
user:          n/a
computer:      sd4.sd3.example.com
description:
network policy server denied access user.

contact network policy server administrator more information.

user:
security id: domain\user
account name: user
account domain: domain
fully qualified account name: domain\user

client machine:
security id: null sid
account name: -
fully qualified account name: -
os-version: -
called station identifier: 54-45-37-59-6f-18:ssid
calling station identifier: 90-a4-fe-f5-5c-15

nas:
nas ipv4 address: 192.168.0.12
nas ipv6 address: -
nas identifier: 54-45-37-59-6f-18
nas port-type: wireless - ieee 802.11
nas port: 62

radius client:
client friendly name: wi-fi 
client ip address: 192.168.0.12

authentication details:
connection request policy name: secure wireless connections
network policy name: secure wireless connections
authentication provider: windows
authentication server: sd4.sd3.example.com
authentication type: peap
eap type: -
account session identifier: -
logging results: accounting information written local log file.
reason code: 266
reason: message received unexpected or badly formatted.

event xml:
<event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <system>
    <provider name="microsoft-windows-security-auditing" guid="{54849625-5478-4994-a5ba-3e3b0328c30d}" />
    <eventid>6273</eventid>
    <version>1</version>
    <level>0</level>
    <task>12552</task>
    <opcode>0</opcode>
    <keywords>0x8010000000000000</keywords>
    <timecreated systemtime="2013-04-17t08:43:35.748681600z" />
    <eventrecordid>1855988030</eventrecordid>
    <correlation />
    <execution processid="588" threadid="1364" />
    <channel>security</channel>
    <computer>kyrbisdc01.kumtor.centerra.com</computer>
    <security />
  </system>
  <eventdata>
    <data name="subjectusersid">s-1-5-21-3308725698-569140402-2839366257-9261</data>
    <data name="subjectusername">user</data>
    <data name="subjectdomainname">domain</data>
    <data name="fullyqualifiedsubjectusername">domain\user</data>
    <data name="subjectmachinesid">s-1-0-0</data>
    <data name="subjectmachinename">-</data>
    <data name="fullyqualifiedsubjectmachinename">-</data>
    <data name="machineinventory">-</data>
    <data name="calledstationid">54-3d-37-59-6f-18:ssid</data>
    <data name="callingstationid">90-a4-de-f5-5c-15</data>
    <data name="nasipv4address">192.168.0.12</data>
    <data name="nasipv6address">-</data>
    <data name="nasidentifier">54-3d-37-59-6f-18</data>
    <data name="nasporttype">wireless - ieee 802.11</data>
    <data name="nasport">62</data>
    <data name="clientname">wi-fi</data>
    <data name="clientipaddress">192.168.0.12</data>
    <data name="proxypolicyname">secure wireless connections</data>
    <data name="networkpolicyname">secure wireless connections</data>
    <data name="authenticationprovider">windows</data>
    <data name="authenticationserver">sd4.sd3.example.com</data>
    <data name="authenticationtype">peap</data>
    <data name="eaptype">-</data>
    <data name="accountsessionidentifier">-</data>
    <data name="reasoncode">266</data>
    <data name="reason">the message received unexpected or badly formatted.</data>
    <data name="loggingresult">accounting information written local log file.</data>
  </eventdata>
</event>

windows server 2008 performs nps role has last updates.

please, give advice.  

check : http://social.technet.microsoft.com/forums/en-us/winservernap/thread/1f29bf51-b1e1-4bfc-be9e-ece2db2af575

arnav sharma | facebook | twitter please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread.



Windows Server  >  Network Access Protection



Comments

Post a Comment

Popular posts from this blog

Azure MFA with Azure AD and RDS

-
i have setup following lab in azure , need help. a server (domain controller) , remote desktop services. and server multi factor authentication server. i have setup following one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ and when im connecting got following error. the user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements , therefore not authorized access rd gateway server. authentication method used was: "ntlm" , connection protocol used: "rpc-http". following error occurred: "23003". also on security log i've got following authentication details: connection request policy name: ts gateway authorization policy network policy name: - authentication provider: radius proxy authentication server: test.test.local authenticati...
Read more

Failed to setup initiator portal. Error status is given in the dump data.

-
hi team, server configured boot san  after booting  facing issue windows server 2008 r2 system logs continuously generating iscsi port error event id 5 failed setup initiator portal. error status given in dump data. eventdata \device\raidport1 000004000100000000000000050000c0000000000000000000000000000000000000000000000000070200c0 binary data: in words 0000: 00040000 00000001 00000000 c0000005 0008: 00000000 00000000 00000000 00000000 0010: 00000000 00000000 c0000207 in bytes 0000: 00 00 04 00 01 00 00 00 ........ 0008: 00 00 00 00 05 00 00 c0 .......À 0010: 00 00 00 00 00 00 00 00 ........ 0018: 00 00 00 00 00 00 00 00 ........ 0020: 00 00 00 00 00 00 00 00 ........ 0028: 07 02 00 c0 ...À hi, please read through article below troubleshoot issue: error event id 5 logged in system log on computer uses iscsi software initiator connect iscsi target device http://suppo...
Read more

Invalid pointer on gpresult /h gpreport.html

-
hello guys i getting following error when trying generate gpresult /h  xxx.html invalid pointer this happening on windows 7 pc using test group policy. tried pc same thing when same gpo applied . hi, try apply some other gpo clients, html report generated succefully? if no, may caused unregistered .dll files, try register .dll files previous thread suggested: http://social.technet.microsoft.com/forums/en-us/winservergp/thread/0ea20c5d-c0ae-457d-89d4-a1686a359e72 if yes, please tell detailed information problematic gpo settings reproduce problem , troubleshooting it. regards, cicely Windows Server  >  Group Policy
Read more