Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
488
Views
5
Helpful
2
Replies

PEAP w/XP client, Cisco 352, IAS

ED CARMODY
Level 4
Level 4

‎01-16-2003 05:58 PM - edited ‎07-04-2021 08:27 AM

I'm running IAS on Win2K server (added patch for PEAP suppport, box is a domain controller in an Active Directory); XP client with SP1; Cisco 352 (tried firmware 12.01T, 11.23 so far); tried both a Cisco 352 card and a Linksys card.

In the event viewer, I keep getting the error:

=======================================

User domain\username was denied access.

Fully-Qualified-User-Name = domain/Users/user

NAS-IP-Address = 10.4.2.81

NAS-Identifier = WLAB-AP352-1

Called-Station-Identifier = 00409640709d

Calling-Station-Identifier = 000625116ecb

Client-Friendly-Name = WLAB-AP352-1

Client-IP-Address = 10.4.2.81

NAS-Port-Type = 19

NAS-Port = 37

Policy-Name = PEAP Authentication Allowed Anytime

Authentication-Type = EAP

EAP-Type = <undetermined>

Reason-Code = 16

Reason = There was an authentication failure because of an unknown user name or a bad password.

=======================================

I'm an admin on the AD. I know darn well I'm entering the correct username and password.

Labels:
0 Helpful
2 Replies 2

ED CARMODY
Level 4
Level 4

‎01-18-2003 12:44 PM

I got it; never mind.

nagle
Level 1
Level 1
In response to ED CARMODY

‎01-22-2003 01:23 PM

Could you tell me what you did to solve your problem... when I try using IAS and PEAP it keeps trying to login using the username "PEAP-mac address".

User PEAP-00097CFCD901 was denied access.

Fully-Qualified-User-Name = APPLY\PEAP-00097CFCD901

NAS-IP-Address = 172.16.200.31

NAS-Identifier = AP1

Called-Station-Identifier = 004096570d87

Calling-Station-Identifier = 00097cfcd901

Client-Friendly-Name = WirelessAP

Client-IP-Address = 172.16.200.31

NAS-Port-Type = 19

NAS-Port = 37

Policy-Name =

Authentication-Type = EAP

EAP-Type =

Reason-Code = 8

Reason = The specified user does not exist.

Note: if I add PEAP-####### as a user in Win2k I get:

User PEAP-00097CFCD901 was denied access.

Fully-Qualified-User-Name = apply.org/Users/PEAP TEST

NAS-IP-Address = 172.16.200.31

NAS-Identifier = AP1

Called-Station-Identifier = 004096570d87

Calling-Station-Identifier = 00097cfcd901

Client-Friendly-Name = WirelessAP

Client-IP-Address = 172.16.200.31

NAS-Port-Type = 19

NAS-Port = 37

Policy-Name = Wireless Policy

Authentication-Type = EAP

EAP-Type =

Reason-Code = 16

Reason = There was an authentication failure because of an unknown user name or a bad password.

Any help would be appreciated.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card