Windows Server - NPS, Radius, and multiple domains

Asked By Perseus109 on 22-Mar-12 02:49 PM

Just had a quick question and I was hoping one of you might have an
idea.  I have added a second two way trust domain (domain B) to our
forest and I need for the users in that domain to be able to VPN in
through our Watchguard firewall useing the Radius server I have
already set up and working for domainA.  I have tried adding the user
from the second domain to the existing permission group in domainA, as
well as creating a second group on domainB and adding that in the NPS
policy.  The first method gives an authentication error showing that
they used domainA for the domain instead of domainB.  The later method
prevents all users from being able to log in at all.  Any idea what I
am missing?

Peter Foldes replied to Perseus109 on 22-Mar-12 04:15 PM

Did you give permission from User A to user B

--
Peter
Please Reply to Newsgroup for the benefit of others
Requests for assistance by email can not and will not be acknowledged.
This posting is provided "AS IS" with no warranties, and confers no rights.
http://www.microsoft.com/protect

Perseus109 replied to Peter Foldes on 23-Mar-12 08:38 AM

The way the NPS has a security group it checks in domainA.  I tried
adding the domainB user to that group but it would not autheniticate
and the logs for NPS show that it looked like the user used doaminA
instead of domainB.

s.http://www.microsoft.com/protect

INSTANTLY dtSearch TERABYTES OF POPULAR DATA TYPES; hundreds of reviews, etc.!