Reason: The specified domain does not exist. LoggingResult: Accounting information was written to the local log file.

iamlohith 1 Reputation point
2022-04-29T05:53:15.227+00:00

I'm trying to authenticate Cisco Switch login through RADIUS server. NPS is registered and client switch 'stackswitch' is added. It doesn't authenticate with my credentials. Below are the error details:

Network Policy Server denied access to a user.

Contact the Network Policy Server administrator for more information.

User:
Security ID: NULL SID
Account Name: lohith.ramachandraiah@amisvr16.greendc.local
Account Domain: -
Fully Qualified Account Name: -

Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
Called Station Identifier: -
Calling Station Identifier: -

NAS:
NAS IPv4 Address: 10.0.1.66
NAS IPv6 Address: -
NAS Identifier: -
NAS Port-Type: Virtual
NAS Port: 1

RADIUS Client:
Client Friendly Name: ciscostack
Client IP Address: 10.0.1.66

Authentication Details:
Connection Request Policy Name: ciscostack
Network Policy Name: -
Authentication Provider: Windows
Authentication Server: amisvr16.greendc.local
Authentication Type: Unauthenticated
EAP Type: -
Account Session Identifier: -
Logging Results: Accounting information was written to the local log file.
Reason Code: 7
Reason: The specified domain does not exist.

Details:

  • System
  • Provider [ Name] Microsoft-Windows-Security-Auditing
    [ Guid] {54849625-5478-4994-A5BA-3E3B0328C30D} EventID 6273 Version 2 Level 0 Task 12552 Opcode 0 Keywords 0x8010000000000000
  • TimeCreated [ SystemTime] 2022-04-29T05:31:31.451845700Z EventRecordID 89091034
  • Correlation [ ActivityID] {44244A09-90D3-0001-244A-2444D390D701}
  • Execution [ ProcessID] 676
    [ ThreadID] 3392 Channel Security Computer amisvr16.greendc.local Security
    • EventData
    SubjectUserSid S-1-0-0
    SubjectUserName lohith.ramachandraiah@amisvr16.greendc.local
    SubjectDomainName -
    FullyQualifiedSubjectUserName -
    SubjectMachineSID S-1-0-0
    SubjectMachineName -
    FullyQualifiedSubjectMachineName -
    CalledStationID -
    CallingStationID -
    NASIPv4Address 10.0.1.66
    NASIPv6Address -
    NASIdentifier -
    NASPortType Virtual
    NASPort 1
    ClientName ciscostack
    ClientIPAddress 10.0.1.66
    ProxyPolicyName ciscostack
    NetworkPolicyName -
    AuthenticationProvider Windows
    AuthenticationServer amisvr16.greendc.local
    AuthenticationType Unauthenticated
    EAPType -
    AccountSessionIdentifier -
    ReasonCode 7
    Reason The specified domain does not exist.
    LoggingResult Accounting information was written to the local log file.

Event 13, NPS
A RADIUS message was received from the invalid RADIUS client IP address 10.0.1.66.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,110 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Limitless Technology 39,351 Reputation points
    2022-05-03T07:41:42.877+00:00

    Hi there,

    My first suggestion would be to make sure that you are not using the DNS name of the switch as a RADIUS client but instead use the IP Address.

    About Event 13, you can refer to http://technet.microsoft.com/en-us/library/dd316135(WS.10).aspx.
    there article has the information about the different reasons and solutions

    To perform this procedure, you must be a member of Domain Admins.

    --If the reply is helpful, please Upvote and Accept it as an answer--

    0 comments