Jak skonfigurować NPS (RADIUS) w Server 2012 do autoryzacji MAC dla UniFi?


(Gimnazjumwjedliczu) #1

Witam, 


(bachus) #2

Zacznijmy może coś od wersji softu: coś z linii 3.2.x?


(Gimnazjumwjedliczu) #3

Wersja kontrolera UniFi to 4.6.3


(Gimnazjumwjedliczu) #4

Dodam jeszcze fragment logów z Event Viewera:

Network Policy Server denied access to a user.

Contact the Network Policy Server administrator for more information.

User:
Security ID: NULL SID
Account Name: 7a60c2f77c61326a
Account Domain: -
Fully Qualified Account Name: -

Client Machine:
Security ID: NULL SID
Account Name: -
Fully Qualified Account Name: -
Called Station Identifier: 0E-18-D6-AD-8C-A1:ZSP_test
Calling Station Identifier: 9C-D2-1E-FE-3A-57

NAS:
NAS IPv4 Address: 192.168.5.110
NAS IPv6 Address: -
NAS Identifier: 0418d6ac8ca1
NAS Port-Type: Wireless - IEEE 802.11
NAS Port: 0

RADIUS Client:
Client Friendly Name: AP1
Client IP Address: 192.168.5.110

Authentication Details:
Connection Request Policy Name: -
Network Policy Name: -
Authentication Provider: -
Authentication Server: WIN-53K1BNUCCSR.ad.local
Authentication Type: -
EAP Type: -
Account Session Identifier: -
Logging Results: Accounting information was not written to any data store.
Reason Code: 49
Reason: The RADIUS request did not match any configured connection request policy (CRP).

Nie wiem skąd 7a60c2f77c61326a się bierze. Przecież adresem MAC urządzenia jest: 9C-D2-1E-FE-3A-57