MS IAS and PIX VPN Client v4.0.1(Rel) question.

jmia · ‎07-16-2004

Can someone please give some advice on a problem I am encountering with MS IAS Radius server and VPN Client.

I have VPN Client's dialing in and the users get the aaa authentication prompt from the PIX to type their username and password, after this the authentication fails.

When I check the IAS server events I'm observing the following:

Event Type: Warning

Event Source: IAS

Event Category: None

Event ID: 2

Date: 16/07/2004

Time: 12:40:53

User: N/A

Computer: ITSLAB01

Description:

User <taken_out> was denied access.

Fully-Qualified-User-Name = <taken_out>

NAS-IP-Address = <taken_out>

NAS-Identifier = <not present>

Called-Station-Identifier = <not present>

Calling-Station-Identifier = <taken_out>

Client-Friendly-Name = <taken_out>

Client-IP-Address = <taken_out>

NAS-Port-Type = <not present>

NAS-Port = 55

Policy-Name = <undetermined>

Authentication-Type = PAP

EAP-Type = <undetermined>

Reason-Code = 16

Reason = There was an authentication failure because of an unknown user name or a bad password.

(NOTE: <taken_out> on the IAS event (above) = I have edited out this info!)

The user name and the password are correct and have been tested.

I'm a little lost now so would VERY much appreciate if someone can point me in the correct direction or with a resolution.

Thanks in advance.

Jay

oimbert · ‎01-04-2005

hello, try to create a "realm" in IAS Config.

At the IAS root click on Properties, choose realm and create for example "abc" = "yourdomain\"

after that in VPN client when prompt for username :

exemple: if your usernae is Jerry write as username

abcJerry and it will be translated like

yourdomain\jerry

hope it can helps you.

have a happy new year

ollivier imbert