Solved

Wireless 5108 Cisco with "Network authentication failed due to a problem with the user account"

Posted on 2014-04-07
3
6,299 Views
Last Modified: 2014-04-17
Hello EE,

Cisco Wireless 5108 when pointing to Domain Controller for Radius Authentication if I uncheck (Microsoft Encrypted Authentication version 2) in EAP properties on DC, authentication works.

When I check it, I get "Network Authentication failed due to problem with the user account".  I have Setup a backup Domain Controller with its own certificate and it works in authenticating but this domain controller does not.  The only difference I can determine is this uses a  wild card certificate and the other doesn't.  Is this why?
0
Comment
Question by:bergquistcompany
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39983786
Can you post the logs?  If it's a 2003 DC you'll find IAS events in the system log.  If it's a 2008> DC you'll find them in Custom logs.
0
 

Author Comment

by:bergquistcompany
ID: 39987664
Here is what the event logs show.  Also I attached a screen shot of the wireless properties and wonder if the less secure should be used (see screen shot of properties attached)?

Network Policy Server denied access to a user.

Contact the Network Policy Server administrator for more information.

User:
      Security ID:                  NULL SID
      Account Name:                  windows7
      Account Domain:                  NORTHAMERICA
      Fully Qualified Account Name:      NORTHAMERICA\windows7

Client Machine:
      Security ID:                  NULL SID
      Account Name:                  -
      Fully Qualified Account Name:      -
      OS-Version:                  -
      Called Station Identifier:            00-3a-99-00-89-80:BERGQUIST
      Calling Station Identifier:            40-0e-85-10-89-64

NAS:
      NAS IPv4 Address:            10.10.1.57
      NAS IPv6 Address:            -
      NAS Identifier:                  Bergquist WLAN Controller
      NAS Port-Type:                  Wireless - IEEE 802.11
      NAS Port:                  1

RADIUS Client:
      Client Friendly Name:            WLC
      Client IP Address:                  10.10.1.57

Authentication Details:
      Connection Request Policy Name:      Use Windows authentication for all users
      Network Policy Name:            -
      Authentication Provider:            Windows
      Authentication Server:            CHDC2.northamerica.bergquistcompany.com
      Authentication Type:            EAP
      EAP Type:                  -
      Account Session Identifier:            -
      Logging Results:                  Accounting information was written to the local log file.
      Reason Code:                  8
      Reason:                        The specified user account does not exist.
0
 
LVL 46

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 39997503
You're using computer authentication - therefore you need to use EAP-based authentication.  If you just use MSChapV2 without EAP the authentication will fail.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Unauthorized Network Devices Appearing on Home Network 20 175
Guest Wireless in a Business Environment 6 126
Wifi addin for wireshark? 5 49
UniFi MAC address filtering 2008 R2 13 108
MAC Filtering: MAC filtering is like handing a list of names to a doorman. If someone comes to the door and mentions a name, this name is checked by the doorman on his list and granted or denied access by this. This means that if someone menti…
This subject  of securing wireless devices conjures up visions of your PC or mobile phone connecting to the Internet through some hotspot at Starbucks. But it is so much more than that. Let’s look at the facts: devices#sthash.eoFY7dic.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

697 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question