locked
Serveur NPS et 802.1x RRS feed

  • Discussion générale

  • Hello,

    Je cherche à mettre en place du 802.1x (ethernet, pas wifi).

    Voici quelques éléments pour commencer:
    - Serveur Windows 2008 R2
    - Client Windows 7
    - Certificats mis en place (RAS, réplication de la messagerie de l'annuaire, authentification du contrôleur de domaine ainsi que le CA) comme indiqué dans les tutos du technet
    - Sur le client, l'authentification 802.1x est bien activée, le certificat principal est visible et sélectionné, etc.

    A partir du commutateur, j'arrive bien à me loguer, mais pas de mon Windows 7.


    Autres précisions concernant la stratégie réseau:
    - Conditions: accès à n'importe quelle plage horraires
    - Contraintes: Méthodes d'authentification PEAP
    - Paramètres: Tunnel-Medium-Type 802, Tunnel-Type VLAN

    Voilà, j'ai essayé de minimiser au maximum les différentes conditions.
    Au niveau de la configuration par défaut du programme de validation d'intégrité de la sécurité Windows, j'ai tout décoché.

    Je ne vois plus quoi tester... problèmes de certificats? De configuration NPS?
    Pourquoi je ne reçois plus de log quand je sélectionne le PEAP?
    C'est normal que les logs EapHost sont vides?

     

    J'avais tout d'abord un autre soucis: je n'avais aucun logs dans le journal. Uniquement dans System32\LogFiles.

    Ceci était due au fait que Windows Server envoyait tous les certificats qu'il avait (Verisign et autres certificats qu'il installe par défaut avec le rôle) dans la même trame IP. Ce qui donnait une trame fragmentée que le client de comprenait pas. Bug Microsoft?

    Après avoir fait le barbare et supprimé les certificats inutiles, les logs étaient à nouveau présent. Mais connexion toujours impossible.

     

    Voici les différents logs que j'ai.

     

    Tout d'abord le journal d'évènement:

     

      Le serveur NPS a refusé l’accès à un utilisateur.
    
      Contactez l’administrateur du serveur NPS pour plus d’informations.
    
      Utilisateur :
        ID de sécurité :     CONTOSO\toto
        Nom de compte :     CONTOSO\toto
        Domaine de compte :     CONTOSO
        Nom de compte complet :  contoso.com/CONTOSO/VLAN3/Toto TITI
    
      Ordinateur client :
        ID de sécurité :     NULL SID
        Nom de compte :     -
        Nom de compte complet :  -
        Version du système d’exploitation :     -
        Identificateur de la station appelée :   00-22-0D-27-EE-05
        Identificateur de la station appelante :   00-0E-0C-36-AE-40
    
      Serveur NAS :
        Adresse IPv4 du serveur NAS :   192.168.201.253
        Adresse IPv6 du serveur NAS :   -
        Identificateur du serveur NAS :     -
        Type de port du serveur NAS :     Ethernet
        Port du serveur NAS :     50105
    
      Client RADIUS :
        Nom convivial du client :   CISCO-10-MQ
        Adresse IP du client :     192.168.201.253
    
      Informations détaillées sur l’authentification :
        Nom de la stratégie de demande de connexion :   Connexions câblées (Ethernet) sécurisées
        Nom de la stratégie réseau :   Connections to other access servers
        Fournisseur d’authentification :   Windows
        Serveur d’authentification :   ad-radius.contoso.com
        Type d’authentification :   PEAP
        Type EAP :     -
        Identificateur de la session du compte :   -
        Résultats de la journalisation :     Les informations de suivi ont été inscrites dans le fichier journal local.
        Code raison :     23
        Raison :      Une erreur s’est produite lors de l’utilisation par le serveur NPS (Network Policy Server) du protocole EAP (Extensible Authentication Protocol). Recherchez les erreurs EAP dans les fichiers journaux du protocole EAP.

     

     

     

    svchost_RASTLS.LOG

     

      [3608] 02-11 10:12:06:199: EapPeapBegin
      [3608] 02-11 10:12:06:199: EapPeapBegin - flags(0x2)
      [3608] 02-11 10:12:06:199: PeapReadUserData
      [3608] 02-11 10:12:06:199:
      [3608] 02-11 10:12:06:199: EapTlsBegin(CONTOSO\toto)
      [3608] 02-11 10:12:06:199: SetupMachineChangeNotification
      [3608] 02-11 10:12:06:199: State change to Initial
      [3608] 02-11 10:12:06:199: EapTlsBegin: Detected PEAP authentication
      [3608] 02-11 10:12:06:199: MaxTLSMessageLength is now 16384
      [3608] 02-11 10:12:06:199: CRYPT_E_NO_REVOCATION_CHECK will not be ignored
      [3608] 02-11 10:12:06:199: CRYPT_E_REVOCATION_OFFLINE will not be ignored
      [3608] 02-11 10:12:06:199: The root cert will not be checked for revocation
      [3608] 02-11 10:12:06:199: The cert will be checked for revocation
      [3608] 02-11 10:12:06:199: EapPeapBegin done
      [3608] 02-11 10:12:06:199: EapPeapMakeMessage
      [3608] 02-11 10:12:06:199: EapPeapSMakeMessage, flags(0x405)
      [3608] 02-11 10:12:06:199: EapPeapSMakeMessage, user prop flags(0x1)
      [3608] 02-11 10:12:06:199: PEAP:PEAP_STATE_INITIAL
      [3608] 02-11 10:12:06:199: EapTlsSMakeMessage, state(0)
      [3608] 02-11 10:12:06:199: EapTlsReset
      [3608] 02-11 10:12:06:199: State change to Initial
      [3608] 02-11 10:12:06:199: EapGetCredentials
      [3608] 02-11 10:12:06:199: Flag is Server and Store is local Machine
      [3608] 02-11 10:12:06:199: GetCachedCredentials Flags = 0x40e1
      [3608] 02-11 10:12:06:199: FindNodeInCachedCredList, flags(0x40e1), default cached creds(0), check thread token(1)
      [3608] 02-11 10:12:06:199: pNode->dwCredFlags = 0x12
      [3608] 02-11 10:12:06:199: pNode->dwCredFlags = 0x12
      [3608] 02-11 10:12:06:199: GetCachedCredentials: Using Cached Credentials
      [3608] 02-11 10:12:06:199: GetCachedCredentials: Hash of the cert in the cache is
      F0 D6 EE 49 89 C1 2F A1 87 83 F6 14 0F 22 6F DD |...I../......"o.|
      FE B4 AD EC 00 00 00 00 00 00 00 00 00 00 00 00 |................|
      [3608] 02-11 10:12:06:214: BuildPacket
      [3608] 02-11 10:12:06:214: << Sending Request (Code: 1) packet: Id: 2, Length: 6, Type: 13, TLS blob length: 0. Flags: S
      [3608] 02-11 10:12:06:214: State change to SentStart
      [3608] 02-11 10:12:06:214: EapPeapSMakeMessage done
      [3608] 02-11 10:12:06:214: EapPeapMakeMessage done
      [3608] 02-11 10:12:06:214: EapPeapEnd
      [3608] 02-11 10:12:06:214: EapTlsEnd
      [3608] 02-11 10:12:06:214: EapTlsEnd(contoso\toto)
      [3608] 02-11 10:12:06:214: EapPeapEnd done
      [1084] 02-11 10:12:06:230: EapPeapMakeMessage
      [1084] 02-11 10:12:06:230: EapPeapSMakeMessage, flags(0x405)
      [1084] 02-11 10:12:06:230: EapPeapSMakeMessage, user prop flags(0x1)
      [1084] 02-11 10:12:06:230: Cloned PPP_EAP_PACKET packet
      [1084] 02-11 10:12:06:230: PEAP:PEAP_STATE_TLS_INPROGRESS
      [1084] 02-11 10:12:06:230: EapTlsSMakeMessage, state(1)
      [1084] 02-11 10:12:06:230: MakeReplyMessage
      [1084] 02-11 10:12:06:230: Reallocating input TLS blob buffer
      [1084] 02-11 10:12:06:230: SecurityContextFunction
      [1084] 02-11 10:12:06:230: AcceptSecurityContext returned 0x90312
      [1084] 02-11 10:12:06:230: State change to SentHello
      [1084] 02-11 10:12:06:230: BuildPacket
      [1084] 02-11 10:12:06:230: << Sending Request (Code: 1) packet: Id: 3, Length: 1194, Type: 13, TLS blob length: 1184. Flags: L
      [1084] 02-11 10:12:06:230: EapPeapSMakeMessage done
      [1084] 02-11 10:12:06:230: EapPeapMakeMessage done
      [3608] 02-11 10:12:06:230: EapPeapMakeMessage
      [3608] 02-11 10:12:06:230: EapPeapSMakeMessage, flags(0x605)
      [3608] 02-11 10:12:06:230: EapPeapSMakeMessage, user prop flags(0x1)
      [3608] 02-11 10:12:06:230: Cloned PPP_EAP_PACKET packet
      [3608] 02-11 10:12:06:230: PEAP:PEAP_STATE_TLS_INPROGRESS
      [3608] 02-11 10:12:06:230: EapTlsSMakeMessage, state(2)
      [3608] 02-11 10:12:06:230: MakeReplyMessage
      [3608] 02-11 10:12:06:230: Reallocating input TLS blob buffer
      [3608] 02-11 10:12:06:230: SecurityContextFunction
      [3608] 02-11 10:12:06:230: AcceptSecurityContext returned 0x80090330
      [3608] 02-11 10:12:06:230: State change to SentFinished. Error: 0x80090330
      [3608] 02-11 10:12:06:230: Negotiation unsuccessful
      [3608] 02-11 10:12:06:230: BuildPacket
      [3608] 02-11 10:12:06:230: << Sending Failure (Code: 4) packet: Id: 4, Length: 4, Type: 0, TLS blob length: 0. Flags:
      [3608] 02-11 10:12:06:230: AuthResultCode = (-2146893008), bCode = (4)
      [3608] 02-11 10:12:06:230: EapPeapSMakeMessage done
      [3608] 02-11 10:12:06:230: EapPeapMakeMessage done

     

     

    IASSAM.LOG

     

      [3608] 02-11 10:12:06:199: NT-SAM Names handler received request with user identity CONTOSO\toto.
      [3608] 02-11 10:12:06:199: Username is already an NT4 account name.
      [3608] 02-11 10:12:06:199: SAM-Account-Name is "CONTOSO\toto".
      [3608] 02-11 10:12:06:199: Successfully created new RAP Based EAP session for user CONTOSO\toto.
      [3608] 02-11 10:12:06:199: No AUTHENTICATION extensions, continuing
      [3608] 02-11 10:12:06:199: NT-SAM Authentication handler received request for CONTOSO\toto.
      [3608] 02-11 10:12:06:199: Validating windows user account CONTOSO\toto
      [3608] 02-11 10:12:06:199: Sending LDAP search to ad-radius.contoso.com.
      [3608] 02-11 10:12:06:199: Successfully validated windows account CONTOSO\toto.
      [3608] 02-11 10:12:06:199: NT-SAM User Authorization handler received request for CONTOSO\toto.
      [3608] 02-11 10:12:06:199: Using native-mode dial-in parameters.
      [3608] 02-11 10:12:06:199: Sending LDAP search to ad-radius.contoso.com.
      [3608] 02-11 10:12:06:199: Inserting attribute msNPAllowDialin.
      [3608] 02-11 10:12:06:199: Successfully retrieved per-user attributes.
      [3608] 02-11 10:12:06:199: Allowed EAP type: 25
      [3608] 02-11 10:12:06:199: Succesfully created EAP Host session with session id 97
      [3608] 02-11 10:12:06:214: Processing output from EAP: action:1
      [3608] 02-11 10:12:06:214: Inserting outbound EAP-Message of length 6.
      [3608] 02-11 10:12:06:214: Issuing Access-Challenge.
      [3608] 02-11 10:12:06:214: No AUTHORIZATION extensions, continuing
      [1084] 02-11 10:12:06:230: Successfully retrieved session (97) for user CONTOSO\toto.
      [1084] 02-11 10:12:06:230: No AUTHENTICATION extensions, continuing
      [1084] 02-11 10:12:06:230: Processing output from EAP: action:1
      [1084] 02-11 10:12:06:230: Inserting outbound EAP-Message of length 1194.
      [1084] 02-11 10:12:06:230: Issuing Access-Challenge.
      [1084] 02-11 10:12:06:230: No AUTHORIZATION extensions, continuing
      [3608] 02-11 10:12:06:230: Successfully retrieved session (97) for user CONTOSO\toto.
      [3608] 02-11 10:12:06:230: No AUTHENTICATION extensions, continuing
      [3608] 02-11 10:12:06:230: Processing output from EAP: action:2
      [3608] 02-11 10:12:06:230: Translating attributes returned by EAPHost.
      [3608] 02-11 10:12:06:230: EAP authentication failed.
      [3608] 02-11 10:12:06:230: No AUTHORIZATION extensions, continuing
      [3608] 02-11 10:12:06:230: Inserting outbound EAP-Message of length 4.

     

     

    IASRAD.LOG

     

      [3608] 02-11 10:12:06:199: Receive RADIUS packet with size 161 from ::ffff:192.168.201.253
      [3608] 02-11 10:12:06:214: message authenticator Attribute added to out-bound RADIUS packet
      [3608] 02-11 10:12:06:214: Message Authenticator Attribute set in out UDP buffer
      [1084] 02-11 10:12:06:230: Receive RADIUS packet with size 308 from ::ffff:192.168.201.253
      [1084] 02-11 10:12:06:230: message authenticator Attribute added to out-bound RADIUS packet
      [1084] 02-11 10:12:06:230: Message Authenticator Attribute set in out UDP buffer
      [3608] 02-11 10:12:06:230: Receive RADIUS packet with size 528 from ::ffff:192.168.201.253
      [3608] 02-11 10:12:06:230: message authenticator Attribute added to out-bound RADIUS packet
      [3608] 02-11 10:12:06:230: Message Authenticator Attribute set in out UDP buffer

     

     

    IASNAP.LOG

      [3608] 02-11 10:12:06:199: The request comes from NAS type 0
      [3608] 02-11 10:12:06:199: Applying CRP policy:Connexions câblées (Ethernet) sécurisées
      [3608] 02-11 10:12:06:199: The request comes from NAS type 0
      [3608] 02-11 10:12:06:199: Applying RAP policy:Connections to other access servers
      [1084] 02-11 10:12:06:230: The request comes from NAS type 0
      [1084] 02-11 10:12:06:230: Applying CRP policy:Connexions câblées (Ethernet) sécurisées
      [3608] 02-11 10:12:06:230: The request comes from NAS type 0
      [3608] 02-11 10:12:06:230: Applying CRP policy:Connexions câblées (Ethernet) sécurisées

     

    svchost_RASCHAP.LOG

      [3608] 02-11 10:12:06:214: EapMSChapv2End

     

    Je ne sais plus quoi vérifier, dans ma Network Policy, dans l'onglet Constraints puis authentification, j'ai bien ajouté PEAP et il n'y a rien dans NAS POrt-type.

     

    J'ai l'impression que c'est un problème de certificat...

    lundi 14 février 2011 08:33

Toutes les réponses

  • Personne?

     

    Derniers logs de C:\Windows\System32\LogFiles\

     

      <Event>
       <Timestamp data_type="4">02/15/2011 12:15:35.565</Timestamp>
       <Computer-Name data_type="1">AD-RADIUS</Computer-Name>
       <Event-Source data_type="1">IAS</Event-Source>
       <User-Name data_type="1">CONTOSO\toto</User-Name>
       <Service-Type data_type="0">2</Service-Type>
       <Framed-MTU data_type="0">1504</Framed-MTU>
       <Called-Station-Id data_type="1">00-22-0D-27-EE-05</Called-Station-Id>
       <Calling-Station-Id data_type="1">00-0E-0C-36-AE-40</Calling-Station-Id>
       <NAS-Port-Type data_type="0">15</NAS-Port-Type>
       <NAS-Port data_type="0">50105</NAS-Port>
       <NAS-Port-Id data_type="1">GigabitEthernet1/0/5</NAS-Port-Id>
       <NAS-IP-Address data_type="3">192.168.201.253</NAS-IP-Address>
       <Client-IP-Address data_type="3">192.168.201.253</Client-IP-Address>
       <Client-Vendor data_type="0">0</Client-Vendor>
       <Client-Friendly-Name data_type="1">CISCO-10-MQ</Client-Friendly-Name>
       <Proxy-Policy-Name data_type="1">Connexions câblées (Ethernet) sécurisées</Proxy-Policy-Name>
       <Provider-Type data_type="0">1</Provider-Type>
       <SAM-Account-Name data_type="1">CONTOSO\toto</SAM-Account-Name>
       <Fully-Qualifed-User-Name data_type="1">CONTOSO\toto</Fully-Qualifed-User-Name>
       <Class data_type="1">311 1 192.168.201.150 02/15/2011 11:08:42 1</Class>
       <Authentication-Type data_type="0">5</Authentication-Type>
       <NP-Policy-Name data_type="1">Copie de Connexions câblées (Ethernet) sécurisées</NP-Policy-Name>
       <Quarantine-Update-Non-Compliant data_type="0">1</Quarantine-Update-Non-Compliant>
       <Packet-Type data_type="0">1</Packet-Type>
       <Reason-Code data_type="0">0</Reason-Code>
      </Event>
    
    
    
      <Event>
       <Timestamp data_type="4">02/15/2011 12:15:35.565</Timestamp>
       <Computer-Name data_type="1">AD-RADIUS</Computer-Name>
       <Event-Source data_type="1">IAS</Event-Source>
       <Class data_type="1">311 1 192.168.201.150 02/15/2011 11:08:42 1</Class>
       <Session-Timeout data_type="0">30</Session-Timeout>
       <Quarantine-Update-Non-Compliant data_type="0">1</Quarantine-Update-Non-Compliant>
       <NP-Policy-Name data_type="1">Copie de Connexions câblées (Ethernet) sécurisées</NP-Policy-Name>
       <Client-IP-Address data_type="3">192.168.201.253</Client-IP-Address>
       <Client-Vendor data_type="0">0</Client-Vendor>
       <Client-Friendly-Name data_type="1">CISCO-10-MQ</Client-Friendly-Name>
       <Proxy-Policy-Name data_type="1">Connexions câblées (Ethernet) sécurisées</Proxy-Policy-Name>
       <Provider-Type data_type="0">1</Provider-Type>
       <SAM-Account-Name data_type="1">CONTOSO\toto</SAM-Account-Name>
       <Fully-Qualifed-User-Name data_type="1">CONTOSO\toto</Fully-Qualifed-User-Name>
       <Authentication-Type data_type="0">5</Authentication-Type>
       <Packet-Type data_type="0">11</Packet-Type>
       <Reason-Code data_type="0">0</Reason-Code>
      </Event>
    
    
    
      <Event>
       <Timestamp data_type="4">02/15/2011 12:15:35.659</Timestamp>
       <Computer-Name data_type="1">AD-RADIUS</Computer-Name>
       <Event-Source data_type="1">IAS</Event-Source>
       <Service-Type data_type="0">2</Service-Type>
       <Framed-MTU data_type="0">1504</Framed-MTU>
       <Called-Station-Id data_type="1">00-22-0D-27-EE-05</Called-Station-Id>
       <Calling-Station-Id data_type="1">00-0E-0C-36-AE-40</Calling-Station-Id>
       <NAS-Port-Type data_type="0">15</NAS-Port-Type>
       <NAS-Port data_type="0">50105</NAS-Port>
       <NAS-Port-Id data_type="1">GigabitEthernet1/0/5</NAS-Port-Id>
       <NAS-IP-Address data_type="3">192.168.201.253</NAS-IP-Address>
       <Client-IP-Address data_type="3">192.168.201.253</Client-IP-Address>
       <Client-Vendor data_type="0">0</Client-Vendor>
       <Client-Friendly-Name data_type="1">CISCO-10-MQ</Client-Friendly-Name>
       <User-Name data_type="1">CONTOSO\toto</User-Name>
       <Proxy-Policy-Name data_type="1">Connexions câblées (Ethernet) sécurisées</Proxy-Policy-Name>
       <Provider-Type data_type="0">1</Provider-Type>
       <SAM-Account-Name data_type="1">CONTOSO\toto</SAM-Account-Name>
       <Fully-Qualifed-User-Name data_type="1">CONTOSO\toto</Fully-Qualifed-User-Name>
       <Class data_type="1">311 1 192.168.201.150 02/15/2011 11:08:42 2</Class>
       <Authentication-Type data_type="0">5</Authentication-Type>
       <NP-Policy-Name data_type="1">Copie de Connexions câblées (Ethernet) sécurisées</NP-Policy-Name>
       <Quarantine-Update-Non-Compliant data_type="0">1</Quarantine-Update-Non-Compliant>
       <Packet-Type data_type="0">1</Packet-Type>
       <Reason-Code data_type="0">0</Reason-Code>
      </Event>
    
    
    
      <Event>
       <Timestamp data_type="4">02/15/2011 12:15:35.659</Timestamp>
       <Computer-Name data_type="1">AD-RADIUS</Computer-Name>
       <Event-Source data_type="1">IAS</Event-Source>
       <Class data_type="1">311 1 192.168.201.150 02/15/2011 11:08:42 2</Class>
       <Session-Timeout data_type="0">30</Session-Timeout>
       <Quarantine-Update-Non-Compliant data_type="0">1</Quarantine-Update-Non-Compliant>
       <Client-IP-Address data_type="3">192.168.201.253</Client-IP-Address>
       <Client-Vendor data_type="0">0</Client-Vendor>
       <Client-Friendly-Name data_type="1">CISCO-10-MQ</Client-Friendly-Name>
       <Proxy-Policy-Name data_type="1">Connexions câblées (Ethernet) sécurisées</Proxy-Policy-Name>
       <Provider-Type data_type="0">1</Provider-Type>
       <SAM-Account-Name data_type="1">CONTOSO\toto</SAM-Account-Name>
       <Fully-Qualifed-User-Name data_type="1">CONTOSO\toto</Fully-Qualifed-User-Name>
       <Authentication-Type data_type="0">5</Authentication-Type>
       <NP-Policy-Name data_type="1">Copie de Connexions câblées (Ethernet) sécurisées</NP-Policy-Name>
       <Packet-Type data_type="0">11</Packet-Type>
       <Reason-Code data_type="0">0</Reason-Code>
      </Event>
    
    
    
      <Event>
       <Timestamp data_type="4">02/15/2011 12:15:35.675</Timestamp>
       <Computer-Name data_type="1">AD-RADIUS</Computer-Name>
       <Event-Source data_type="1">IAS</Event-Source>
       <Service-Type data_type="0">2</Service-Type>
       <Framed-MTU data_type="0">1504</Framed-MTU>
       <Called-Station-Id data_type="1">00-22-0D-27-EE-05</Called-Station-Id>
       <Calling-Station-Id data_type="1">00-0E-0C-36-AE-40</Calling-Station-Id>
       <NAS-Port-Type data_type="0">15</NAS-Port-Type>
       <NAS-Port data_type="0">50105</NAS-Port>
       <NAS-Port-Id data_type="1">GigabitEthernet1/0/5</NAS-Port-Id>
       <NAS-IP-Address data_type="3">192.168.201.253</NAS-IP-Address>
       <Client-IP-Address data_type="3">192.168.201.253</Client-IP-Address>
       <Client-Vendor data_type="0">0</Client-Vendor>
       <Client-Friendly-Name data_type="1">CISCO-10-MQ</Client-Friendly-Name>
       <User-Name data_type="1">CONTOSO\toto</User-Name>
       <Proxy-Policy-Name data_type="1">Connexions câblées (Ethernet) sécurisées</Proxy-Policy-Name>
       <Provider-Type data_type="0">1</Provider-Type>
       <SAM-Account-Name data_type="1">CONTOSO\toto</SAM-Account-Name>
       <Fully-Qualifed-User-Name data_type="1">CONTOSO\toto</Fully-Qualifed-User-Name>
       <Class data_type="1">311 1 192.168.201.150 02/15/2011 11:08:42 3</Class>
       <NP-Policy-Name data_type="1">Copie de Connexions câblées (Ethernet) sécurisées</NP-Policy-Name>
       <Authentication-Type data_type="0">11</Authentication-Type>
       <Quarantine-Update-Non-Compliant data_type="0">1</Quarantine-Update-Non-Compliant>
       <Packet-Type data_type="0">1</Packet-Type>
       <Reason-Code data_type="0">0</Reason-Code>
      </Event>
    
    
    
      <Event>
       <Timestamp data_type="4">02/15/2011 12:15:35.675</Timestamp>
       <Computer-Name data_type="1">AD-RADIUS</Computer-Name>
       <Event-Source data_type="1">IAS</Event-Source>
       <Class data_type="1">311 1 192.168.201.150 02/15/2011 11:08:42 3</Class>
       <Authentication-Type data_type="0">11</Authentication-Type>
       <Quarantine-Update-Non-Compliant data_type="0">1</Quarantine-Update-Non-Compliant>
       <NP-Policy-Name data_type="1">Copie de Connexions câblées (Ethernet) sécurisées</NP-Policy-Name>
       <Client-IP-Address data_type="3">192.168.201.253</Client-IP-Address>
       <Client-Vendor data_type="0">0</Client-Vendor>
       <Client-Friendly-Name data_type="1">CISCO-10-MQ</Client-Friendly-Name>
       <Fully-Qualifed-User-Name data_type="1">CONTOSO\toto</Fully-Qualifed-User-Name>
       <Proxy-Policy-Name data_type="1">Connexions câblées (Ethernet) sécurisées</Proxy-Policy-Name>
       <Provider-Type data_type="0">1</Provider-Type>
       <SAM-Account-Name data_type="1">CONTOSO\toto</SAM-Account-Name>
       <Packet-Type data_type="0">3</Packet-Type>
       <Reason-Code data_type="0">23</Reason-Code>
      </Event>

    D'ailleurs si quelqu'un pouvait me dire comment lire ce fichier de log sans faire des retours à la ligne manuellement histoire que ce soit lisible...

    mardi 15 février 2011 11:39
  • Personne?
    mardi 1 mars 2011 08:24
  • Bonjour,

    J'ai le même problème que toi.

    As-tu trouvé une solution?

    Merci

    jeudi 4 avril 2013 11:12
  • Salut NICIT,

    peux-tu essayer de te connecter avec un client Windows XP ? il me semble que c'est un problème à Windows 7 (bug de chez Microsoft).

    Merci de faire le test et nous tenir au courant.

    A bientôt.


    Hicham KADIRI | IT Consultant /Director. MCP - MCSA - MCTS - MCSE - MCITP - MCT

    mardi 9 avril 2013 18:18