NPS - The specified domain does not exist.

Posted on 2012-09-03
Last Modified: 2012-09-03
Have an issue with getting my VPN authorization to work with Radius. Seems that the connection works between NPS and Fortigate using MS-CHAPv2 but I keep getting the error "the domain specified does not exisit"

Domain Controller is Server 2008 R2
Domain Name: test.local
Pre 2003 Domain Name:
Domain/Forest Level: 2003

Network Policy Server denied access to a user.
Contact the Network Policy Server administrator for more information.
	Security ID:			TEST.COM\bob
	Account Name:			bob
	Account Domain:			TEST.COM
	Fully Qualified Account Name:\bob

Client Machine:
	Security ID:			NULL SID
	Account Name:			-
	Fully Qualified Account Name:	-
	OS-Version:			-
	Called Station Identifier:		-
	Calling Station Identifier:

	NAS IPv4 Address:		-
	NAS IPv6 Address:		-
	NAS Identifier:			FW01
	NAS Port-Type:			-
	NAS Port:			-

RADIUS Client:
	Client Friendly Name:		Fortigate
	Client IP Address:

Authentication Details:
	Connection Request Policy Name:	Use Windows authentication for all users
	Network Policy Name:		Connections to other access servers
	Authentication Provider:		Windows
	Authentication Server:		SVR01.test.local
	Authentication Type:		MS-CHAPv2
	EAP Type:			-
	Account Session Identifier:		3032643030303061
	Logging Results:			Accounting information was written to the local log file.
	Reason Code:			7
	Reason:				The specified domain does not exist.

Open in new window

Question by:Eirejp
    1 Comment
    LVL 1

    Accepted Solution

    Okay looks like I posted to soon. Fixed it.

    added a reg key to force authentication to the DNS name instead of the Netbios name
    Type REG SZ
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\RasMan\PPP\ControlProtocols\BuiltIn\Default Domain

    Key entry should be the DNS domain name.

    Then noticed when restarting the server the NPS service was reporting that the domain test.local was unavailable.

    Because the server is 2008 R2 and net bios is not in use I added a DNS forward lookup for the doman test.local and added the domain controllers in there.

    Seems to be all good now.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Should I Do With This Threat Intelligence?

    Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

    Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
    Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
    This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    7 Experts available now in Live!

    Get 1:1 Help Now