登入
 
首頁文件庫學習園地下載支援社群論壇
IT 專業人員的技術資源 >
NPS - Unknown Vendor-ID 311

Answered NPS - Unknown Vendor-ID 311

  • 2012年6月26日 上午 10:54
     
     
    登入以投票
    0

    Hello,

    I have a couple of load balancers that authenticate with my NPS servers, however I am getting a syslog message

    "httpd: rc_avpair_gen: received VSA attribute with unknown Vendor-Id 311"

    In my Network Policy for the devices I have added "Vendor-Specific : RADIUS Standard" under the Vendor Specific settings (as the load balancer docs say).

    I've also done a wireshark capture and can see the "AVP: l=12  t=Vendor-Specific(26) v=Microsoft(311)" being sent from the NPS to the device.

    Anyone have any ideas how to clear this httpd message?

    Thanks,

    Peter

     

所有回覆

  • 2012年6月27日 上午 07:56
    版主
     
     
    登入以投票
    0

    Hi Peter,

    Thank you for the post.

    Please open the NPS network policy--Settings--Routing and Remote Access--Multilink and Bandwidth Allocation Protocol, set the value to "Do not allow Multilink connections". Here is a similar thread.
    http://social.technet.microsoft.com/Forums/en-CA/winserverNAP/thread/8c2ffe23-7e40-4a19-bb06-a5c76e5006c2

    If there are more inquiries on this issue, please feel free to let us know.
     
    Regards

    Rick Tan

    TechNet Community Support

     
  • 2012年6月27日 上午 10:06
     
     
    登入以投票
    0

    Hi Rick,

    After setting this I see the vendor ID has changed to 0... these messages happen every 60 seconds (revalidation interval on the device)

    httpd: rc_avpair_gen: received VSA attribute with unknown Vendor-Id 0

    Any ideas?

    Thanks

     
  • 2012年6月28日 上午 10:14
     
     
    登入以投票
    0

    Hi,

    ID 311 means Microsoft. Does the NPS authenticate work sccessfully? It is possible that the load balancer doesn't support the vendor ID 311.

    Best Regards

    Scott Xie

     
  • 2012年6月28日 下午 02:35
     
     
    登入以投票
    0
    Yea the load balancer authenticates on the correct Policy and works as expected.  Since I turned off the "Multilink and Bandwidth Allocation Protocol" its been returning ID 0 rather than 311
     
  • 2012年7月5日 上午 10:21
     
     已答覆
    登入以投票
    0

    Hi,

    To find out the cause of the issue, a lot of logs are necessary. I suggest that you can create a case to microsoft for further troubleshooting the issue.

    Best Regards

    Scott Xie

     
  • 2012年7月5日 下午 12:40
     
     
    登入以投票
    0
    Ah ok thanks Scott, hoped it wasnt going to come to that for a message that is only an annoyance more than anything else!
     
  • 2012年7月7日 上午 04:56
     
     
    登入以投票
    0

    Nice weekend Peter,

    Yes, if there isn't any business impact, it doesn't worth that. However, it is hard to know the root cause of that message based on the current information. Thanks for understanding.

    Best Regard

    Scott Xie