none
event id 4625 and 6273 occurs when do eap-tls auth with third party root certificate RRS feed

  • 问题

  • issue condition:

    windows 2008 r2: VMware OS(new installed)

        with domain controller

        certificate auth

        import third party root ca enterprise.der into trusted store

        NPS service: use eap-tls for 802.1x authentication

        client with third party client.pfx(user: MAC address has been created in domain with dial-in checked and store password encryption) in it without           CA(no validate server certificate)

    when client auth to network: the log event 4625 and 6273(reason 16) will occur at the same time, 4625 is at the front of 6273.

    event 4625:  a user failed login, 0000064(user name doesn't exist)

    event 6273: "Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect."

    I have try so many method to slove this issue many days, but no result. below is my way:

    1.change the NTLMv2 to NTLM

    2.renew the windows 2008 R2 SID

    3.allow SID/anonymous transition

    4....

    for few days, not result, is there anyone could help me? pleasure thanks.

    2013年4月9日 15:10