I
Ian Burnell
I have followed the MS guide to set up 2x2016 server for VPN and NPS. Starting to test a W10 client but getting error 812. A few questions
1. On the VPN server under RRAS Properties/Security it is set to Radius authentication per documentation. However clicking on the authentication methods button below I found EAP, MS-CHAP2 and PAP ticked. I have unticked all apart from IKEv2. Can't test until back in office tomorrow but does this sound correct?
2. Our certificate authority is xxxcertsub the issuing certificate server. The is a xxxcertroot server. When I look at NPS it has the certsub as the issuer. On W10 client the only prover listed is xxxcertroot - is this a possible issue
3. Finally when reviewing the client certificate I noticed that the Cryptopgraphy tab had SHA1. Is this correct - shouldn't it be SHA256?
Ian Burnell, London (UK)
Continue reading...
1. On the VPN server under RRAS Properties/Security it is set to Radius authentication per documentation. However clicking on the authentication methods button below I found EAP, MS-CHAP2 and PAP ticked. I have unticked all apart from IKEv2. Can't test until back in office tomorrow but does this sound correct?
2. Our certificate authority is xxxcertsub the issuing certificate server. The is a xxxcertroot server. When I look at NPS it has the certsub as the issuer. On W10 client the only prover listed is xxxcertroot - is this a possible issue
3. Finally when reviewing the client certificate I noticed that the Cryptopgraphy tab had SHA1. Is this correct - shouldn't it be SHA256?
Ian Burnell, London (UK)
Continue reading...