10-22-2019 12:40 AM - edited 02-21-2020 09:36 AM
HI,
Does any one has a tutorial how to configure FTD SSL VPN authentication with NPS server ?
I only found this (for ASA):
I tried same configuraion but I always get this error on NPS :
error code encountered is 6273 with reason code 16: "Authentication failed due to a mismatch of the user's credentials." The username provided does not match not an existing user account or the password is incorrect. "
Any help please ?
10-22-2019 08:07 AM
FTD (managed by FDM) guide should be here:
NPS guide should be the same. The error seems to point out that the password is incorrect. You can go to the FTD CLI and run "debug radius all" to see the same debug as you would see on the ASA.
10-23-2019 01:43 AM
Hi Rahul,
Thank you for the reply, The acoount is correct , beacuse with same account and password , it works with ASA.
I activated all possible debug :
> show debug
debug ssl enabled at level 1
debug ssl enabled at level 1 (persistent)
debug webvpn enabled at level 1
debug webvpn enabled at level 1 (persistent)
debug radius session
debug radius decode
debug radius dynamic-authorization
No such file or directory
But still could not see anything...
Also when doing a packet capture , I see FTD send request paquet and receive Reject paquet from NPS
Meanwhile ASA send nearly same request paquet and receive accept paquet from NPS
I'm sure I used same configuration , only difference is using CHAPv2 because I did not find where to activate it on FTD.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide