I'm trying to authenticate Cisco Switch login through RADIUS server. NPS is registered and client switch 'stackswitch' is added. It doesn't authenticate with my credentials. Below are the error details:
Network Policy Server denied access to a user.
Contact the Network Policy Server administrator for more information.
User:
Security ID: NULL SID
Account Name: lohith.ramachandraiah@amisvr16.greendc.local
Account Domain: -
Fully Qualified Account Name: -
Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
Called Station Identifier: -
Calling Station Identifier: -
NAS:
NAS IPv4 Address: 10.0.1.66
NAS IPv6 Address: -
NAS Identifier: -
NAS Port-Type: Virtual
NAS Port: 1
RADIUS Client:
Client Friendly Name: ciscostack
Client IP Address: 10.0.1.66
Authentication Details:
Connection Request Policy Name: ciscostack
Network Policy Name: -
Authentication Provider: Windows
Authentication Server: amisvr16.greendc.local
Authentication Type: Unauthenticated
EAP Type: -
Account Session Identifier: -
Logging Results: Accounting information was written to the local log file.
Reason Code: 7
Reason: The specified domain does not exist.
Details:
- System
- Provider [ Name] Microsoft-Windows-Security-Auditing
[ Guid] {54849625-5478-4994-A5BA-3E3B0328C30D} EventID 6273 Version 2 Level 0 Task 12552 Opcode 0 Keywords 0x8010000000000000
- TimeCreated [ SystemTime] 2022-04-29T05:31:31.451845700Z EventRecordID 89091034
- Correlation [ ActivityID] {44244A09-90D3-0001-244A-2444D390D701}
- Execution [ ProcessID] 676
[ ThreadID] 3392 Channel Security Computer amisvr16.greendc.local Security
SubjectUserSid S-1-0-0
SubjectUserName lohith.ramachandraiah@amisvr16.greendc.local
SubjectDomainName -
FullyQualifiedSubjectUserName -
SubjectMachineSID S-1-0-0
SubjectMachineName -
FullyQualifiedSubjectMachineName -
CalledStationID -
CallingStationID -
NASIPv4Address 10.0.1.66
NASIPv6Address -
NASIdentifier -
NASPortType Virtual
NASPort 1
ClientName ciscostack
ClientIPAddress 10.0.1.66
ProxyPolicyName ciscostack
NetworkPolicyName -
AuthenticationProvider Windows
AuthenticationServer amisvr16.greendc.local
AuthenticationType Unauthenticated
EAPType -
AccountSessionIdentifier -
ReasonCode 7
Reason The specified domain does not exist.
LoggingResult Accounting information was written to the local log file.
Event 13, NPS
A RADIUS message was received from the invalid RADIUS client IP address 10.0.1.66.