NPS network policy with multiple Client ip4 addesses
I have a wireless policy on my NPS server with the primary wireless controller added using a Client IPv4 address entry in the policy. I want to add the backup controller as well but it seems it is adding it as a and condition. I need it to be added as an or condition when the primary controller is unreachable. How can I add multiple Client ip4 addessess in a Network policy with an or condition? An and condition would require both to be reachable. thanks.
AOVPN / Reasoncode 16
We have an always on vpn configuration. This worked fine till few months ago, users can't get connected anymore. After reboot of NPS server, all works fine for some time (random, sometimes 1 day, 2 days, 1 week), till the users can't get connected again. Reboot of nps server solves it. When users can't connect, I see an event on NPS server with reason code 16 Network Policy Server denied access to a user. Contact the Network Policy Server administrator for more information. User: Security ID: xxx Account Name:xxx Account Domain: xxx Fully Qualified Account Name: xx Client Machine: Security ID: NULL SID Account Name: - Fully Qualified Account Name: - Called Station Identifier: x.x.x.x Calling Station Identifier: x.x.x.x NAS: NAS IPv4 Address: x.x.x.x NAS IPv6 Address: - NAS Identifier: server-VPN01 NAS Port-Type: Virtual NAS Port: 14 RADIUS Client: Client Friendly Name: server-VPN01 Client IP Address: x.x.x.x Authentication Details: Connection Request Policy Name: Virtual Private Network (VPN) Connections Network Policy Name: Virtual Private Network (VPN) Connections Authentication Provider: Windows Authentication Server: server-NPS01 Authentication Type: PEAP EAP Type: Microsoft: Smart Card or other certificate (EAP-TLS) Account Session Identifier: 33373834 Logging Results: Accounting information was written to the local log file. Reason Code: 16 Reason: Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect. As said, reboot of nps solves issues temporary. Already installed new nps server but same issue. Any suggestions where to check ?
NPS fails to generate logs
I have a new 2025 domain and am setting up 802.1X to allow access to users/computers using certificate based authentication. I have a CA installed on a new 2025 member server and configured that role and also have Group Policies deployed to enroll users/computers with the certificate needed to connect internal WiFi/wired networks. I've verified clients are receiving all needed certs and the root cert. I have installed NPS (same server has CA), registered to AD, added Radius clients and configured policies. Everything looks good except...nothing works. Clients are not receiving authentication responses (just timeouts) and there are no logs being generated. Also, there are no relevant entries in the Windows Event Logs. I enabled auditing via the cmd line and verified it is enabled. I've also forced auditing via Group Policy. I've verified the NPS log location and have even tried moving it to other folders to see if it was a permission issue. I'm out of ideas. What else can I try?Hybrid to Entra ID WiFi Certificate Authentication NPS via WHfB Cloud Trust & Cloud PKI-Replace ADCS
Hello Team, We are working in moving our devices Hybrid Entra ID Joined to Intune autopilot Entra ID Joined Current scenario: Hybrid Entra ID Joined devices (joined to both on-prem AD and Entra ID) Active Directory with Entra ID Connect for object synchronization AD Certificate Services (ADCS) issuing user and device certificates via GPO auto-enrollment Group Policies to push Wi-Fi configuration (EAP-TLS using device certificate) NPS RADIUS server using EAP-TLS ("Smart Card or Other Certificate") for secure 802.1X authentication On-prem SSO enabled through standard Kerberos authentication Now, I am testing Autopilot Win11 Entra ID Joined with WHfB using Cloud trust to SSO to on-prem resources. The autopilot is working, however, the WIFI is not working as the autopilot device doesn't have any certificate from the on-prem ADCS. What is the best practice to try be as much cloud and begin to decommision on-prem services. I have 2 options to push the User and computer certificate to the AUtopilot device: Option 1: Intune Certificate Connector that will bridge on-prem ADCS and Intune, In Intune a PKCS profile to install the certificate to the autopilot device. Option 2: Intune Cloud PKI and configuration profile PKCS profile to install the certificate to the autopilot device. on-prem install the root CA from the Intune cloud PKI. https://learn.microsoft.com/en-us/intune/intune-service/protect/microsoft-cloud-pki-deployment For the on-prem SSO I will contine using Cloud Trust. Component Target Device Identity Autopilot + Entra ID Joined only (no domain join) User Sign-In Windows Hello for Business (WHfB) with Cloud Kerberos Trust Certificate Issuance Replace ADCS/GPO with Microsoft Cloud PKI and Intune PKCS Wi-Fi Authentication Retain existing NPS RADIUS using EAP-TLS, but trust both ADCS and Cloud PKI root CAs On-prem SSO Enabled by AzureADKerberos on domain controllers Hybrid Devices Continue current operation during the transition — no immediate impact The 2 network environment needs to coexist: the on-prem and the cloud. Device Type Certificate Issuer Wi-Fi Auth SSO Hybrid AD-joined ADCS via GPO EAP-TLS (device cert) Native Kerberos Autopilot Entra ID Joined Cloud PKI via Intune EAP-TLS (device cert) WHfB + Cloud Trust (AzureADKerberos) How the New Wi-Fi Auth Works: Autopilot devices receive: A device certificate from Cloud PKI via Intune A Wi-Fi profile using EAP-TLS authentication NPS RADIUS server: Validates the device cert Issues access to Wi-Fi WHfB Cloud Trust provides a Kerberos ticket from AzureADKerberos, enabling seamless access to file shares, print servers, etc. This allows Autopilot Entra ID Joined devices to: Connect to Wi-Fi without GPO Access on-prem resources without passwords High-Level Implementation Steps Deploy Microsoft Cloud PKI in Intune Configure PKCS profiles for user and device certificates Deploy WHfB Cloud Trust via Intune + Entra ID (no AD join needed) Configure AzureADKerberos on domain controllers Install Cloud PKI Root CA in NPS server trust store Update NPS policy to accept certificates from both ADCS and Cloud PKI Deploy Wi-Fi profiles to Autopilot devices via Intune (EAP-TLS using device cert) Based on it, what is the best practice to move the device to the cloud as much possible.
Connect a Workgroup device on 802.1x Network with NPS
We have an 802.1X-secured Wi-Fi network using EAP-TLS authentication with machine certificates. Domain-joined devices connect and authenticate successfully. However, we have a scenario where some non-domain (Workgroup) Windows 11 devices must connect to this network — and they fail to authenticate. What we've tested so far: User Certificate Approach: Created a duplicate of the User certificate template. Set Compatibility to Windows Server 2008 (to enable key storage provider support). Set Application Policies to include only Client Authentication. Set Subject Name to Supply in the request. During enrollment, we ensured the UPN in the certificate matches the AD user's UPN (e.g., mailto:user@domain). We verified the certificate appears under Published Certificates in the AD user's account. Machine Certificate Approach: Created a certificate with: CN=host/hostname.domain.local in the Subject DNS=hostname.domain.local in the SAN Client Authentication EKU Ensured the certificate is installed in the Local Machine store with private key. In AD: Created a Computer object matching the machine name. Added the ServicePrincipalName (SPN): host/hostname.domain.local Added altSecurityIdentities: "X509:<i>CN=CA Name,DC=domain,DC=local<s>CN=host/hostname.domain.local</s></i>" What we observe in NPS Event Viewer: Each connection attempt from a Workgroup machine — even with valid certificate, and proper mapping — results in: Reason Code: 16 Reason: Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect. We also ensured that: NPS has a valid certificate with Server Authentication EKU The authentication method used is Microsoft: Smart card or other certificate (EAP-TLS) The policies are configured for certificate-based authentication only The question How can we make NPS map a client certificate (from a non-domain device) to a user or computer account in Active Directory, so that authentication succeeds? Are there additional requirements for altSecurityIdentities, or limitations for Workgroup clients that we're missing?MFA on RDP (with AD, RDG, NPS)
Hi, everyone. In the company where I work we have an AD domain and RDP servers (MP) that some employees access from outside via RDG. We have already installed ADFS and NPS but I am still not clear which products and which license levels are necessary to enable 2FA on RDP via RDG. Does anyone have a clearer idea than me? Thanks
Unable to use Machine Groups to authenticate wifi with NPS
We have a Windows server 2019 running NPS. If user group is the only criteria, then I am able to enter my user/pass and connect to the wifi. If I add machine groups, the computer will not connect to the wifi, even though it is a member of the specified group. The reason code is 65. Any help would be appreciated. Here is a sanitized log from the NPS: <Event><Timestamp data_type="4">08/31/2024 16:03:01.612</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><User-Name data_type="1">host/FQDNmachinename</User-Name><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 1</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.612</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 1</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.628</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 2</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.628</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 2</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.644</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 3</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.644</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 3</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.675</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 4</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.675</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 4</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 5</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 5</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 6</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 6</Class><Session-Timeout data_type="0">60</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">host/FQDNmachinename</User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 7</Class><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 7</Class><Session-Timeout data_type="0">30</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">host/FQDNmachinename</User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 8</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 8</Class><Session-Timeout data_type="0">60</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.378</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><User-Name data_type="1">username</User-Name><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 9</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.378</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 9</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.394</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 10</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.394</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 10</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.425</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 11</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.425</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 11</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.441</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 12</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.441</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 12</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.737</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 13</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.737</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 13</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.753</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 14</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.753</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 14</Class><Session-Timeout data_type="0">60</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 15</Class><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 15</Class><Session-Timeout data_type="0">30</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 16</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 16</Class><Session-Timeout data_type="0">60</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 17</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 17</Class><Session-Timeout data_type="0">60</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><MS-CHAP-Domain data_type="2">015353444953</MS-CHAP-Domain><Authentication-Type data_type="0">11</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 18</Class><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 18</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Authentication-Type data_type="0">11</Authentication-Type><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.847</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 19</Class><EAP-Friendly-Name data_type="1">Microsoft: Secured password (EAP-MSCHAP v2)</EAP-Friendly-Name><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><Authentication-Type data_type="0">11</Authentication-Type><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.847</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 19</Class><EAP-Friendly-Name data_type="1">Microsoft: Secured password (EAP-MSCHAP v2)</EAP-Friendly-Name><Authentication-Type data_type="0">11</Authentication-Type><PEAP-Fast-Roamed-Session data_type="0">0</PEAP-Fast-Roamed-Session><MS-CHAP-Domain data_type="2">015353444953</MS-CHAP-Domain><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Packet-Type data_type="0">3</Packet-Type><Reason-Code data_type="0">65</Reason-Code></Event>Looking for assistance with NPS cert based Wifi for Macs and PCs
So we have a somewhat unique situation that I am trying to figure out any solution that works.. We are currently using Meraki hardware for our wireless system and we have a directive from management to work to integrate out various systems so that we can deploy a company-wide wireless network(s) that used cert based authentication instead of the current username/password that times out every couple weeks. For further context, we have windows based servers with a local AD domain synced to Office 365. We are also using one of our DCs as a CA, but it is not being used for anything. We have several NPS servers setup and we can get our windows, domain joined machines to work fairly well on the Meraki System. The problem comes in with our Mac users. Our AD domain was setup moons ago when using a .int TLD for the domain name along with other best practice issues that would be too disruptive to properly fix. As of now, we can't get our Mac machines to properly authenticate or trust the Wi-Fi networks when we use the NPS profiles/certs. We did recently get invested in a PKI system through digicert that we are currently using for our Client VPN and have been trying to use auto-enrolled certs from that, but similarly to no avail. The final nail in the coffin is that we are under a budget crunch, so investing in something like JumpCloud or some other online hosted RADIUS service is not happening anytime soon. I have looked at the documentation for Setting up 802.1x and we can do user authentication fairly well, but we have been instructed to get machine/certificate based authentication working. Long story short, what I am hoping to find is an article or video or something that discusses setting up windows NPS to interact with Meraki SSIDs so that both domain joined PCs and non-domain joined Macs can use one or more SSIDs to do cert based authentication.
NPS on reboot choses wrong certificate
Seems that recently (after May 2024 update?) certificate selected for Microsoft: Smart Care or other certificate does not "stick" I need it to use RAS template certificate, but on reboot it will select longest certificate ie Remote Desktop And ofcourse all my wireless clients (machine certificate based RADIUS authentication) are DENIED access and hell breaks lose. Same issue with primary-to-secondary NPS sync (where whole config gets exported from source, deleted on destination & re-imported on destination, as scheduled task) Anybody has any idea how to force specific certificate to STAY as selected by admin (me) Thanks Seb
