Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Windows Networking > Authenticate as guest when user or computer information is unavail

Reply
Thread Tools Display Modes

Authenticate as guest when user or computer information is unavail

 
 
RB
Guest
Posts: n/a

 
      04-02-2007, 11:18 AM
hi,

we want to set up 802.1X using RADIUS (microsoft ias) EAP - PEAP - TLS
(smart card or other certificate) and cisco sw.
to enroll client authentication certificate we need to put user's computer
into dedicated VLAN.
I have created remote access rule for guest authentication.
policy conditions:
nas-port-type "ethernet" AND windows-group "DOMAIN\ias guest group" AND
authentication-type "EAP"


authentication:
eap method: protected eap (paep)/smart card or other certificate
allow clients to connect without negotiating an authentication method is
checked too.

i changed
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\RemoteAccess\Policy\"Default
User Identity" for guest account, this user is the only member of "DOMAIN\ias
guest group". user's computers are Windows XP SP2.

when user try to connect without client authentication certificate but "auth
as guest ..." checked, he allays get following warning and authentication
failed.


Event Type: Warning
Event Source: IAS
Event Category: None
Event ID: 2
Date: 2.4.2007
Time: 13:05:50
User: N/A
Computer: BBS-DC01
Description:
User was denied access.
Fully-Qualified-User-Name = intranet.corp.domain.sk/HQ/Resources/IAS/IAS
Guest Account
NAS-IP-Address = 10.x.x.x
NAS-Identifier = <not present>
Called-Station-Identifier = xx-xx-xx-xx-xx-xx
Calling-Station-Identifier = xx-xx-xx-xx-xx-xx
Client-Friendly-Name = SWITCH133
Client-IP-Address = 10.x.x.x
NAS-Port-Type = Ethernet
NAS-Port = 50440
Proxy-Policy-Name = Use Windows authentication for all users
Authentication-Provider = Windows
Authentication-Server = <undetermined>
Policy-Name = Auth as Guest
Authentication-Type = PEAP
EAP-Type = <undetermined>
Reason-Code = 16
Reason = Authentication was not successful because an unknown user name or
incorrect password was used.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 4f 05 07 80 O..€

i am not able to find any solution, could someone help, pls. ?

thx for all responses )

RB
 
Reply With Quote
 
 
 
Reply

« Netlogon Error 2003 Server | lenteur lecteur reseau par rapport au voisinnage reseau »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
wu-ftp guest user configuration Wiley Post Linux Networking 0 07-02-2010 02:52 AM
guest vs anonymous user Agostino Sclauzero Windows Networking 1 04-24-2008 01:42 AM
guest vs anonymous user Agostino Sclauzero Windows Networking 0 04-23-2008 11:06 PM
authenticate as guest when computer or user information is unavailable Graham Turner Wireless Networks 5 03-14-2005 08:42 PM
Always logon as guest user kon Windows Networking 2 12-21-2003 05:49 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11