Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PEAP w/XP client, Cisco 352, IAS

I'm running IAS on Win2K server (added patch for PEAP suppport, box is a domain controller in an Active Directory); XP client with SP1; Cisco 352 (tried firmware 12.01T, 11.23 so far); tried both a Cisco 352 card and a Linksys card.

In the event viewer, I keep getting the error:

=======================================

User domain\username was denied access.

Fully-Qualified-User-Name = domain/Users/user

NAS-IP-Address = 10.4.2.81

NAS-Identifier = WLAB-AP352-1

Called-Station-Identifier = 00409640709d

Calling-Station-Identifier = 000625116ecb

Client-Friendly-Name = WLAB-AP352-1

Client-IP-Address = 10.4.2.81

NAS-Port-Type = 19

NAS-Port = 37

Policy-Name = PEAP Authentication Allowed Anytime

Authentication-Type = EAP

EAP-Type = <undetermined>

Reason-Code = 16

Reason = There was an authentication failure because of an unknown user name or a bad password.

=======================================

I'm an admin on the AD. I know darn well I'm entering the correct username and password.

2 REPLIES
New Member

Re: PEAP w/XP client, Cisco 352, IAS

I got it; never mind.

New Member

Re: PEAP w/XP client, Cisco 352, IAS

Could you tell me what you did to solve your problem... when I try using IAS and PEAP it keeps trying to login using the username "PEAP-mac address".

User PEAP-00097CFCD901 was denied access.

Fully-Qualified-User-Name = APPLY\PEAP-00097CFCD901

NAS-IP-Address = 172.16.200.31

NAS-Identifier = AP1

Called-Station-Identifier = 004096570d87

Calling-Station-Identifier = 00097cfcd901

Client-Friendly-Name = WirelessAP

Client-IP-Address = 172.16.200.31

NAS-Port-Type = 19

NAS-Port = 37

Policy-Name =

Authentication-Type = EAP

EAP-Type =

Reason-Code = 8

Reason = The specified user does not exist.

Note: if I add PEAP-####### as a user in Win2k I get:

User PEAP-00097CFCD901 was denied access.

Fully-Qualified-User-Name = apply.org/Users/PEAP TEST

NAS-IP-Address = 172.16.200.31

NAS-Identifier = AP1

Called-Station-Identifier = 004096570d87

Calling-Station-Identifier = 00097cfcd901

Client-Friendly-Name = WirelessAP

Client-IP-Address = 172.16.200.31

NAS-Port-Type = 19

NAS-Port = 37

Policy-Name = Wireless Policy

Authentication-Type = EAP

EAP-Type =

Reason-Code = 16

Reason = There was an authentication failure because of an unknown user name or a bad password.

Any help would be appreciated.

247
Views
5
Helpful
2
Replies
CreatePlease to create content