IKEv2-VPN & Windows server 2016 NPS

互联宽带网 11 Reputation points
2020-12-24T06:57:43.137+00:00

Hello,

The system version is Windows Server 2016 Data Center Edition. I set up AD DS, AD CS, NPS on this server, set this server as Radius Server,MikroTik Router is set to VPN-Server and Radius-Client, routing IP 172.18.168.1, NPS IP 172.18.168.8, AP is connected to the router, the mobile phone connects to the AP wirelessly, and obtains IP 172.18.168.253, and strongSwan is installed on the mobile phone to initiate VPN to the router Authentication request, the router receives the authentication request, and transmits account information to TekRADIUS through the Radius protocol, and TekRADIUS feeds back the authentication result to the router. During the actual operation, the authentication failed., but there is no log content in the Windows Server 2016 NAPS event.

The following is a log of strongSwan authentication failure on the mobile phone:[51072-strongswan.txt][1]

Best regards

Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,524 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Candy Luo 12,711 Reputation points Microsoft Vendor
    2020-12-24T08:03:26.17+00:00

    Hi ,

    Please understand, strongSwan is a third-party software which we are not familiar with it. You need to contact strongSwan support to help you analyze strongSwan authentication failure.

    Note: since this is a public forum, everyone could view your information, please remove private information that might leak your privacy.

    Best Regards,

    Candy

    --------------------------------------------------------------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


  2. Candy Luo 12,711 Reputation points Microsoft Vendor
    2020-12-24T09:16:12.9+00:00

    Hi @互联宽带网 ,

    I have deleted the attachment content.

    >In addition, how can I view the authentication failure log on Windows Server 2016?

    Use following command to check if NPS is logging successful and failed login attempts.

    auditpol /get /subcategory:"Network Policy Server"  
    

    As picture below:

    51085-image.png

    If you can see Success and Failure, this means that NPS will record failed login attempts in event log.

    For your reference:

    NPS events and audit policy

    If there is no log content in the Windows Server 2016 NAPS event. It might be that VPN client did not forward authentication requests to Radius server. So you might need to contact MikroTik Router and strongSwan support for further troubleshooting.

    Best Regards,

    Candy


    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.