Testing a AD server for user authentication

Is there any way I can test a specific server for user auth'?
I have a server on the network, it's a 2008R2 DC.  I'm just wondering if it's authenticating properly as when I configure my Cisco VPN to use this at the Auth server it doesn;t seem to work.

Is there any way I can test just this server for Domain user authentication?

LVL 1
wannabecraigAsked:
Who is Participating?
 
Vinchenzo-the-SecondConnect With a Mentor Commented:
if you run dcdiag and don't see any errors, then the dc is up and running as it should be, and will authenticate users
0
 
Vinchenzo-the-SecondCommented:
log onto the DC itself, with a domain admin account?  it will use itself for authentication.

otherwise authentication in AD is done via subnet location in ADSS.  You will need to get the DC on it's own in a site, and log on from a client on a subnet attached to its site
0
 
wannabecraigAuthor Commented:
I can log in with my UN and PW, however when I try to log in from aother device, a Cisco router in this case I don't see an Audit failures... It's just rejects me.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
wannabecraigAuthor Commented:
There is only one error when I run DCdiag..

    Starting test: NCSecDesc
       Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
          Replicating Directory Changes In Filtered Set
       access rights for the naming context:
       DC=DomainDnsZones,DC=(mydomain),DC=ie
       Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
          Replicating Directory Changes In Filtered Set
       access rights for the naming context:
       DC=ForestDnsZones,DC=(mydomain),DC=ie
       ......................... WIN2008R2DC-1 failed test NCSecDesc

I'm not sure if this would cause an issue though.
0
 
Vinchenzo-the-SecondCommented:
Did you upgrade these from Windows 2003?  The above happens when you promot from windows 2003 without preparing RODC in the forest.  Its ok if your not planning to install RODC.

By the looks of it this DC looks ok.
0
 
wannabecraigAuthor Commented:
Yeah, I upgraded the domain but dont need RODC.

I have now gotten an error message when I try to connected from the device:

Log Name:      Security
Source:        Microsoft-Windows-Security-Auditing
Date:          27/04/2011 16:19:42
Event ID:      4771
Task Category: Kerberos Authentication Service
Level:         Information
Keywords:      Audit Failure
User:          N/A
Computer:      WIN2008R2DC-1.MYDOMAIN.ie
Description:
Kerberos pre-authentication failed.

Account Information:
     Security ID:            MYDOMAIN\MYACCOUNT
     Account Name:            MYACCOUNT

Service Information:
     Service Name:            krbtgt/MYDOMAIN.IE

Network Information:
     Client Address:            192.168.0.121
     Client Port:            13259

Additional Information:
     Ticket Options:            0x40800010
     Failure Code:            0x25
     Pre-Authentication Type:      2

Certificate Information:
     Certificate Issuer Name:            
     Certificate Serial Number:        
     Certificate Thumbprint:            

Certificate information is only provided if a certificate was used for pre-authentication.

Pre-authentication types, ticket options and failure codes are defined in RFC 4120.

If the ticket was malformed or damaged during transit and could not be decrypted, then many fields in this event might not be present.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
 <System>
   <Provider Name="Microsoft-Windows-Security-Auditing" Guid="{54849625-5478-4994-A5BA-3E3B0328C30D}" />
   <EventID>4771</EventID>
   <Version>0</Version>
   <Level>0</Level>
   <Task>14339</Task>
   <Opcode>0</Opcode>
   <Keywords>0x8010000000000000</Keywords>
   <TimeCreated SystemTime="2011-04-27T15:19:42.346750000Z" />
   <EventRecordID>2560711</EventRecordID>
   <Correlation />
   <Execution ProcessID="564" ThreadID="1708" />
   <Channel>Security</Channel>
   <Computer>WIN2008R2DC-1.MYDOMAIN.ie</Computer>
   <Security />
 </System>
 <EventData>
   <Data Name="TargetUserName">MYACCOUNT</Data>
   <Data Name="TargetSid">S-1-5-21-343763970-1172178921-926709054-2344</Data>
   <Data Name="ServiceName">krbtgt/MYDOMAIN.IE</Data>
   <Data Name="TicketOptions">0x40800010</Data>
   <Data Name="Status">0x25</Data>
   <Data Name="PreAuthType">2</Data>
   <Data Name="IpAddress">192.168.0.121</Data>
   <Data Name="IpPort">13259</Data>
   <Data Name="CertIssuerName">
   </Data>
   <Data Name="CertSerialNumber">
   </Data>
   <Data Name="CertThumbprint">
   </Data>
 </EventData>
</Event>
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.