Domain not passing realm to ias server

fightclub34fightclub34 Member Posts: 41 ■■□□□□□□□□
We are authenticating wireless guest to a central IAS server. One of our remote domains is not passing the realm to the IAS server. If i look in the looks the FQDN is not passed just the local domain/username.


We are using eap-tls certificate based.

Any ideas why the realm is not passing from a child domain in our forest

Comments

  • TechnitoTechnito Member Posts: 152
    It's really hard to determine why just by the information you've given. It could be a single to a series of problems why. Could be as simple as a root certificate not installed or invalid on that server. The client limit of the IAS server could be reached. And also could also be a domain delegation issue. If you're sure it's definitely none of those things, it could very well be a DNS issue. The remote server may cannot locate an SRV record for IAS. But it's really hard to say for sure, good luck.
    Knowledge is being an Architect, no matter what field.....
  • dynamikdynamik Banned Posts: 12,312 ■■■■■■■■■□
    Bust out a sniffer (i.e. Wireshark) and see what's going on on the wire.
  • fightclub34fightclub34 Member Posts: 41 ■■□□□□□□□□
    I definetly think it is a dns issue. When looking at the ias logs i see the computer account showing up as domain/computer where it should be subdomain/ou/computer. The FQDN is not coming across and the local IAS server is searching for the accounts in its local AD
Sign In or Register to comment.