We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now


'Ignore user dial-in properties' setting is ignored?

Medium Priority
Last Modified: 2014-04-16
Our environment is configured using NPS to authenticate our wireless connections according to machine domain membership.  For whatever reason, many of my users cannot connect, and the NPS server throws this log:

Reason Code:                  65
      Reason:                        The Network Access Permission setting in the dial-in properties of the user account in Active Directory is set to Deny access to the user. To change the Network Access Permission setting to either Allow access or Control access through NPS Network Policy, obtain the properties of the user account in Active Directory Users and Computers, click the Dial-in tab, and change Network Access Permission.

So, logically, I went in to my policy (and the other 2 default policies), and set them all to "Ignore user's dial-in properties' in the overview tab.  However, they still cannot connect unless I explicitly set their account to Allow Access under the Network Access Permission tab of their account settings.  99% of my auser accounts are already configured to "Control access through NPS Network Policy" and it would be annoying to change them all by hand.  Is there a setting that I'm missing?
Watch Question

Top Expert 2014
Unlock this solution and get a sample of our free trial.
(No credit card required)
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.


Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.