Tag:"nps" | Microsoft Community Hub

MFA on RDP (with AD, RDG, NPS)
Hi, everyone. In the company where I work we have an AD domain and RDP servers (MP) that some employees access from outside via RDG. We have already installed ADFS and NPS but I am still not clear which products and which license levels are necessary to enable 2FA on RDP via RDG. Does anyone have a clearer idea than me? Thanks
FulvioPalma
Dec 13, 2024 Place Azure
42Views
0likes
2Comments
Unable to use Machine Groups to authenticate wifi with NPS
We have a Windows server 2019 running NPS. If user group is the only criteria, then I am able to enter my user/pass and connect to the wifi. If I add machine groups, the computer will not connect to the wifi, even though it is a member of the specified group. The reason code is 65. Any help would be appreciated. Here is a sanitized log from the NPS: <Event><Timestamp data_type="4">08/31/2024 16:03:01.612</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><User-Name data_type="1">host/FQDNmachinename</User-Name><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 1</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.612</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 1</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.628</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 2</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.628</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 2</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.644</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 3</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.644</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 3</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.675</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 4</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:01.675</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 4</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 5</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 5</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">host/FQDNmachinename</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 6</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 6</Class><Session-Timeout data_type="0">60</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">host/FQDNmachinename</User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 7</Class><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 7</Class><Session-Timeout data_type="0">30</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">host/FQDNmachinename</User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 8</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:04.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 8</Class><Session-Timeout data_type="0">60</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\machinename$</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\machinename$</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.378</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><User-Name data_type="1">username</User-Name><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 9</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.378</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 9</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.394</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 10</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.394</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 10</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.425</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 11</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.425</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 11</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.441</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 12</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:12.441</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 12</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.737</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 13</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.737</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 13</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.753</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><User-Name data_type="1">username</User-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 14</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.753</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 14</Class><Session-Timeout data_type="0">60</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 15</Class><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.769</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 15</Class><Session-Timeout data_type="0">30</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 16</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.784</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 16</Class><Session-Timeout data_type="0">60</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><Authentication-Type data_type="0">5</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 17</Class><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.815</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 17</Class><Session-Timeout data_type="0">60</Session-Timeout><Authentication-Type data_type="0">5</Authentication-Type><Fully-Qualifed-User-Name data_type="1">domain\username</Fully-Qualifed-User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><MS-CHAP-Domain data_type="2">015353444953</MS-CHAP-Domain><Authentication-Type data_type="0">11</Authentication-Type><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 18</Class><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.831</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 18</Class><Session-Timeout data_type="0">30</Session-Timeout><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Authentication-Type data_type="0">11</Authentication-Type><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Packet-Type data_type="0">11</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.847</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><NAS-IP-Address data_type="3">IP of AP</NAS-IP-Address><NAS-Port data_type="0">0</NAS-Port><NAS-Identifier data_type="1">IP of AP</NAS-Identifier><NAS-Port-Type data_type="0">19</NAS-Port-Type><Calling-Station-Id data_type="1">b81ea4a0ae87</Calling-Station-Id><Called-Station-Id data_type="1">904c81ce59f2</Called-Station-Id><Service-Type data_type="0">2</Service-Type><Framed-MTU data_type="0">1100</Framed-MTU><Vendor-Specific data_type="2">000039E7050654657374</Vendor-Specific><Vendor-Specific data_type="2">000039E7060D5353442D53756974652D44</Vendor-Specific><Vendor-Specific data_type="2">000039E70A085353442D4850</Vendor-Specific><Vendor-Specific data_type="2">000039E70C0857696E203130</Vendor-Specific><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><User-Name data_type="1">username</User-Name><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 19</Class><EAP-Friendly-Name data_type="1">Microsoft: Secured password (EAP-MSCHAP v2)</EAP-Friendly-Name><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><Authentication-Type data_type="0">11</Authentication-Type><Packet-Type data_type="0">1</Packet-Type><Reason-Code data_type="0">0</Reason-Code></Event> <Event><Timestamp data_type="4">08/31/2024 16:03:13.847</Timestamp><Computer-Name data_type="1">NPS/AD Server</Computer-Name><Event-Source data_type="1">IAS</Event-Source><Class data_type="1">311 1 IP of NPS 08/31/2024 20:02:12 19</Class><EAP-Friendly-Name data_type="1">Microsoft: Secured password (EAP-MSCHAP v2)</EAP-Friendly-Name><Authentication-Type data_type="0">11</Authentication-Type><PEAP-Fast-Roamed-Session data_type="0">0</PEAP-Fast-Roamed-Session><MS-CHAP-Domain data_type="2">015353444953</MS-CHAP-Domain><Fully-Qualifed-User-Name data_type="1">domain/Users/Full Name</Fully-Qualifed-User-Name><NP-Policy-Name data_type="1">Connections to other access servers</NP-Policy-Name><Client-IP-Address data_type="3">IP of AP</Client-IP-Address><Client-Vendor data_type="0">0</Client-Vendor><Client-Friendly-Name data_type="1">WiFi</Client-Friendly-Name><Proxy-Policy-Name data_type="1">Request policy</Proxy-Policy-Name><Provider-Type data_type="0">1</Provider-Type><SAM-Account-Name data_type="1">domain\username</SAM-Account-Name><Packet-Type data_type="0">3</Packet-Type><Reason-Code data_type="0">65</Reason-Code></Event>
bhallman76
Sep 11, 2024 Place Windows 10
303Views
0likes
1Comment
Looking for assistance with NPS cert based Wifi for Macs and PCs
So we have a somewhat unique situation that I am trying to figure out any solution that works.. We are currently using Meraki hardware for our wireless system and we have a directive from management to work to integrate out various systems so that we can deploy a company-wide wireless network(s) that used cert based authentication instead of the current username/password that times out every couple weeks. For further context, we have windows based servers with a local AD domain synced to Office 365. We are also using one of our DCs as a CA, but it is not being used for anything. We have several NPS servers setup and we can get our windows, domain joined machines to work fairly well on the Meraki System. The problem comes in with our Mac users. Our AD domain was setup moons ago when using a .int TLD for the domain name along with other best practice issues that would be too disruptive to properly fix. As of now, we can't get our Mac machines to properly authenticate or trust the Wi-Fi networks when we use the NPS profiles/certs. We did recently get invested in a PKI system through digicert that we are currently using for our Client VPN and have been trying to use auto-enrolled certs from that, but similarly to no avail. The final nail in the coffin is that we are under a budget crunch, so investing in something like JumpCloud or some other online hosted RADIUS service is not happening anytime soon. I have looked at the documentation for Setting up 802.1x and we can do user authentication fairly well, but we have been instructed to get machine/certificate based authentication working. Long story short, what I am hoping to find is an article or video or something that discusses setting up windows NPS to interact with Meraki SSIDs so that both domain joined PCs and non-domain joined Macs can use one or more SSIDs to do cert based authentication.
stewdesmarais
Aug 02, 2024 Place Windows Server for IT Pro
3.7KViews
0likes
2Comments
NPS on reboot choses wrong certificate
Seems that recently (after May 2024 update?) certificate selected forMicrosoft: Smart Care or other certificatedoes not "stick" I need it to use RAS template certificate, but on reboot it will select longest certificate ie Remote Desktop And ofcourse all my wireless clients (machine certificate based RADIUS authentication) are DENIED access and hell breaks lose. Same issue with primary-to-secondary NPS sync (where whole config gets exported from source, deleted on destination & re-imported on destination, as scheduled task) Anybody has any idea how to force specific certificate to STAY as selected by admin (me) Thanks Seb
SebCerazy
May 16, 2024 Place Windows Server for IT Pro
502Views
0likes
0Comments
NPS ODBC Logging on Server 2022 isn't working
I've setup new NPS servers. When I setup accounting with an SQL DB connection the tables are not generated correctly. I have an old install and the tables have much more info. I have tried to change to ODBC and IAS log formats, but I can't seem to get it to work. The tables are not generated unless I run the wizard. The wizard always sets things back to DTS compliant. I have searched for days now on a fix. What is the problem with NPS? Does anyone know how to fix this? HELP
ComputerHabit
Apr 19, 2024 Place Windows Server for IT Pro
449Views
0likes
1Comment
Windows 11 clients cannot authenticate to NPS server using computer authentication
We have a Windows server 2019 datacenter server running NPS. Our WiFi Office clients authenticate to this server for access to the corporate WiFi network. We use computer authentication, so members of the "domain computers" group are allowed access in the policy (we only want domain computers on this network and we don't want users to need to enter their user credentials). We use GPO to provision a WiFi profile to the domain computers, in which we configure that computer authentication is needed. Our Windows 10 clients (literally all of them) are connecting nicely (I have anonimized the event log for security purposes: Network Policy Server granted access to a user. User: Security ID: DOMAIN\COMPUTER$ Account Name: host/COMPUTER.domain.nl Account Domain: DOMAIN Fully Qualified Account Name: DOMAIN\COMPUTER$ Client Machine: Security ID: NULL SID Account Name: - Fully Qualified Account Name: - Called Station Identifier: xx-xx-xx-xx-xx-xx:SSID Calling Station Identifier: XX-XX-XX-XX-XX-XX NAS: NAS IPv4 Address: x.x.x.x NAS IPv6 Address: - NAS Identifier: AP01 NAS Port-Type: Wireless - IEEE 802.11 NAS Port: 1 RADIUS Client: Client Friendly Name: SonicPoint HQ 1 Client IP Address: x.x.x.x Authentication Details: Connection Request Policy Name: NAP 802.1X (Wireless) Network Policy Name: NAP 802.1X (Wireless) Non NAP-Capable Authentication Provider: Windows Authentication Server: NPS.DOMAIN.nl Authentication Type: PEAP EAP Type: Microsoft: Secured password (EAP-MSCHAP v2) Account Session Identifier: "edited" Logging Results: Accounting information was written to the local log file. When a Windows 11 client (all of them actually) tries to connect, we see the following logged (again, anonimized): Network Policy Server denied access to a user. Contact the Network Policy Server administrator for more information. User: Security ID: NULL SID Account Name: host/COMPUTER.domain.nl Account Domain: DOMAIN Fully Qualified Account Name: DOMAIN\COMPUTER$ Client Machine: Security ID: NULL SID Account Name: - Fully Qualified Account Name: - Called Station Identifier: XX-XX-XX-XX-XX-XX:SSID Calling Station Identifier: XX-XX-XX-XX-XX-XX NAS: NAS IPv4 Address: x.x.x.x NAS IPv6 Address: - NAS Identifier: AP01 NAS Port-Type: Wireless - IEEE 802.11 NAS Port: 1 RADIUS Client: Client Friendly Name: SonicPoint HQ 1 Client IP Address: x.x.x.x Authentication Details: Connection Request Policy Name: NAP 802.1X (Wireless) Network Policy Name: - Authentication Provider: Windows Authentication Server: NPS.domain.nl Authentication Type: PEAP EAP Type: - Account Session Identifier: "edited" Logging Results: Accounting information was written to the local log file. Reason Code: 16 Reason: Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect. The only real difference I see is that for the Windows 11 client, NULL SID is provided as "Security ID". Could it be that this is causing NPS to not be able to verify that the machine that is attempting to connect is a member of the security group which is allowed to connect (the default group "Domain Computers")? Looking forward to either a quick bug fix or a configuration change I need to make. Maybe other Windows Server admins are also experiencing this issue?
Solved
PaulvDam
Nov 13, 2023 Place Windows Server for IT Pro
152KViews
2likes
18Comments
Certificate selection when using 802.1x authentication
Hello I have a question on how a certificate is selected from a computers personal certificates when using 802.1x for wireless authentication using Windows NPS server as RADIUS. I have been having issues with users not being able to authenticate to the office WiFi, and after looking at the logs on the NPS server it shows that the computer is giving the NPS server a certificate other than the one belonging to the computer account. There is a list of certificates in the personal certificate store, and the one certificate for the computer account (given by the on prem PKI) is at the bottom of the list. So it looks like it is just choosing the first certificate in the list, and then failing authentication and not giving the correct cert. Shouldn't it go down the list of certs and eventually giving the correct cert instead of the first one in the list and causing authentication to fail? Hope this make sense any insight is appreciated! Thanks.
charlie4872
Nov 09, 2023 Place Windows Server for IT Pro
15KViews
0likes
1Comment
User or computer certificate selection for 802.1x
I've set up an NPS, on windows 2019, to be used as Radius server for 802.1x certificate-based autentication. On NPS I made a connection profile with both Domain Users And Domain Computer so that belonging to one of them should enable to connect to wi-fi, provided that the computer OR the user has a valid Cert. I found, however, that it seems that the connection only works if "at least" there's the computer certificate. If a computer has not the certificate but the user does it does not connect. What is wrong ? thanks
StefanoC66
Jun 27, 2023 Place Windows Server for IT Pro
3KViews
0likes
1Comment
Remote Dekstop Connection using Azure MFA
Hello Everyone, I am facing a little problem now. We are thinking to implement MFA to login in to our servers on-prem from internal network. Obviously we can use some third party tools such us DUO or AD Professional Plus. However from what I can see there is a possibility to use RD Gateway with NPS that will have MFA plugin on it. I just need to understand something correctly - am I right saying that I can handle all RDP traffic to all the servers through RD Gateway that will be redirecting authentication through NPS to Azure MFA or it is no go? Regards, Wojciech
mrktos
Jul 06, 2021 Place Azure
29KViews
0likes
8Comments
Network Policy Server 2016 RADIUS logs
Hello, I'm seeing something strange in Wireshark when user successfully authenticates through CISCO VPN. The connection policy specifies RAS VPN-Dial up as NAS, in the conditions - NAS Port Type - Virtual (VPN), the rest is at the default. Network Policy below: What could be causing the error?
VickVega
Aug 05, 2020 Place Windows Server for IT Pro
1.3KViews
0likes
0Comments