?
Solved

Wireless 5108 Cisco with "Network authentication failed due to a problem with the user account"

Posted on 2014-04-07
3
Medium Priority
?
6,636 Views
Last Modified: 2014-04-17
Hello EE,

Cisco Wireless 5108 when pointing to Domain Controller for Radius Authentication if I uncheck (Microsoft Encrypted Authentication version 2) in EAP properties on DC, authentication works.

When I check it, I get "Network Authentication failed due to problem with the user account".  I have Setup a backup Domain Controller with its own certificate and it works in authenticating but this domain controller does not.  The only difference I can determine is this uses a  wild card certificate and the other doesn't.  Is this why?
0
Comment
Question by:bergquistcompany
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39983786
Can you post the logs?  If it's a 2003 DC you'll find IAS events in the system log.  If it's a 2008> DC you'll find them in Custom logs.
0
 

Author Comment

by:bergquistcompany
ID: 39987664
Here is what the event logs show.  Also I attached a screen shot of the wireless properties and wonder if the less secure should be used (see screen shot of properties attached)?

Network Policy Server denied access to a user.

Contact the Network Policy Server administrator for more information.

User:
      Security ID:                  NULL SID
      Account Name:                  windows7
      Account Domain:                  NORTHAMERICA
      Fully Qualified Account Name:      NORTHAMERICA\windows7

Client Machine:
      Security ID:                  NULL SID
      Account Name:                  -
      Fully Qualified Account Name:      -
      OS-Version:                  -
      Called Station Identifier:            00-3a-99-00-89-80:BERGQUIST
      Calling Station Identifier:            40-0e-85-10-89-64

NAS:
      NAS IPv4 Address:            10.10.1.57
      NAS IPv6 Address:            -
      NAS Identifier:                  Bergquist WLAN Controller
      NAS Port-Type:                  Wireless - IEEE 802.11
      NAS Port:                  1

RADIUS Client:
      Client Friendly Name:            WLC
      Client IP Address:                  10.10.1.57

Authentication Details:
      Connection Request Policy Name:      Use Windows authentication for all users
      Network Policy Name:            -
      Authentication Provider:            Windows
      Authentication Server:            CHDC2.northamerica.bergquistcompany.com
      Authentication Type:            EAP
      EAP Type:                  -
      Account Session Identifier:            -
      Logging Results:                  Accounting information was written to the local log file.
      Reason Code:                  8
      Reason:                        The specified user account does not exist.
0
 
LVL 46

Accepted Solution

by:
Craig Beck earned 2000 total points
ID: 39997503
You're using computer authentication - therefore you need to use EAP-based authentication.  If you just use MSChapV2 without EAP the authentication will fail.
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MAC Filtering: MAC filtering is like handing a list of names to a doorman. If someone comes to the door and mentions a name, this name is checked by the doorman on his list and granted or denied access by this. This means that if someone menti…
DECT technology has become a popular standard for wireless voice communication. DECT devices are not likely to be affected by other electronic devices and signals because they operate in a separate frequency-band.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question