Netbios name has a period and using NPS servers for 802.1x

Jonathan Bell 26 Reputation points
2021-04-19T13:59:45.747+00:00

Hello,

I have an Active Directory Domain called company.local, however, the NetBIOS name is company.uk. The domain consists of x2 Windows Server 2008 R2 domain controllers and x2 Windows Server 2008 R2 NPS servers which service connections for our radius clients for 802.1x.

I want to upgrade the entire environment to Windows Server 2019, however, the issue I am experiencing is that when I introduce a Windows Server 2019 NPS server and point the RADIUS clients to it no one can authenticate and within the event viewer of the NPS server is it saying that it cannot find the domain company.uk, which is the NetBIOS name.

I doubt there is an easy way to rename the NetBIOS name in the environment, so I was wondering if there is a work around or does it mean we need to create an entirely new domain without a period in the NetBIOS name?

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,470 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,898 questions
0 comments

6 answers

Sort by: Newest
Most helpful Newest Oldest
  1. Candy Luo 12,656 Reputation points Microsoft Vendor
    2021-04-20T02:58:55.263+00:00

    Hi,

    Based on my understanding, you issue is that NPS is treating the dotted NetBIOS name as a FQDN and it results in NPS doing a dns lookup on the company.uk name. This fails because this is NetBIOS name and DNS does not host a zone.

    I doubt there is an easy way to rename the NetBIOS name in the environment, so I was wondering if there is a work around or does it mean we need to create an entirely new domain without a period in the NetBIOS name?

    It's not recommended to use dotted NetBIOS Domain name. In your case, just as you said, you have to create a new domain without a period in the NetBIOS name.

    Best Regards,
    Candy

    --------------------------------------------------------------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments
  2. Dave Patrick 426.1K Reputation points MVP
    2021-04-19T14:25:45.027+00:00

    am guessing that Microsoft support will most likely tell me to go away

    Highly unlikely

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments
  3. Jonathan Bell 26 Reputation points
    2021-04-19T14:20:55.41+00:00

    Hi,

    Thanks, I will raise a case with Microsoft, the difficultly I'm having is that the OS is no longer supported, unfortunately, this is a client that hasn't done anything with their environment for a very long time so trying to get them upgraded. I am guessing that Microsoft support will most likely tell me to go away because the product is no longer supported.

    0 comments
  4. Dave Patrick 426.1K Reputation points MVP
    2021-04-19T14:17:48.377+00:00

    Sounds good, I'd suggest starting a case here with product support.
    https://support.serviceshub.microsoft.com/supportforbusiness

    --please don't forget to Accept as answer if the reply is helpful--

    0 comments
  5. Jonathan Bell 26 Reputation points
    2021-04-19T14:11:21.907+00:00

    Hi,

    Yep understand that I need to raise the functional level above 2008, which it currently is, also I understand that I need to migrate over to DFSR for sysvol. The issue still remains on how to get a workaround for having a period in the NetBIOS name. That is my main query because it's not allowing authentication on NPS servers.

    So far everywhere I've looked is reporting that I need to build an entirely new domain, which will be a massive job because there is over 200+ servers and Exchange in a Hybrid, so I would like to try and avoid migrating to an entirely new domain if possible.

    0 comments