Home | Site Map | Cisco How ToNet How To | Wireless |Search | Forums | Services | Donations | Careers | About Us | Contact Us|

Event ID 3: IAS Reason-Code = 5

Permissions, Group Policy, IPSec, Virus, Spam, Spyware, Malware.

Event ID 3: IAS Reason-Code = 5

Postby chicagotech » Sun Apr 15, 2007 11:11 pm

Symptom: When a user tries to use wireless which is setup WPA Enterprise via Windows certificate or IAS, he can’t establish the connection. The Windows IAS receives the following error:

Event Type: Error
Event Source: IAS
Event Category: None
Event ID: 3
Date: 4/15/2007
Time: 2:33:02 PM
User: N/A
Computer: chicagotech
Description:
Access request for user 2220\blin was discarded.
Fully-Qualified-User-Name = 2220\blin
NAS-IP-Address = 10.0.30.52
NAS-Identifier = REG
Called-Station-Identifier = 0015.f909.a470
Calling-Station-Identifier = 0019.d230.941a
Client-Friendly-Name = AP-C
Client-IP-Address = 10.0.30.52
NAS-Port-Type = Wireless - IEEE 802.11
NAS-Port = 503
Proxy-Policy-Name = Use Windows authentication for all users
Authentication-Provider = Windows
Authentication-Server = <undetermined>
Reason-Code = 5
Reason = The user account domain cannot be accessed.

Event Type: Error
Event Source: IAS
Event Category: None
Event ID: 5052
Date: 4/15/2007
Time: 2:32:07 PM
User: N/A
Computer: chicagotech
Description:
There is no domain controller available for domain 2220

Cause and resolution: the user is logging on local computer. To use IAS, he should logon domain.
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
chicagotech
Site Admin
 
Posts: 6486
Joined: Mon Nov 27, 2006 1:24 pm
Location: Chicago USA

Postby chicagotech » Thu Jul 26, 2007 9:21 am

The problem is the Vista home can't join the domain. This post may help more details.

Event ID 3: IAS Reason-Code = 5Reason-Code = 5 Reason = The user account domain cannot be accessed. Event Type: Error Event Source: IAS Event Category: None Event ID: 5052 Date: 4/15/2007 ...
www.chicagotech.net/netforums/viewtopic.php?t=661


Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
"Chris" <stonec> wrote in message news:1185415506.362453.213960@l70g2000hse.googlegroups.com...
I am having a problem getting my clients to connect to the server
using IAS.

My setup:


Server 2003 Enterprise
lan1 - cable modem
lan2 - linksys wireless router wrt54gs v5


Clients - Windows Vista Home


I have set this up before however the only difference was I was using
win XP clients. So far I cant get any client to connect or
authenticate with the server there are a few error messages I get.
Event Type: Error
Event Source: IAS
Event Category: None
Event ID: 3
Date: 7/25/2007
Time: 1:37:29 AM
User: N/A
Computer: STONESERVER
Description:
Access request for user APARTMENT.LOCAL\sto...@apartment.local was
discarded.
Fully-Qualified-User-Name = APARTMENT.LOCAL\sto...@apartment.local
NAS-IP-Address = 10.10.1.2
NAS-Identifier = 0016b6d77e9b
Called-Station-Identifier = 0016b6d77e9b
Calling-Station-Identifier = 00146cca8765
Client-Friendly-Name = WLAN
Client-IP-Address = 10.10.1.2
NAS-Port-Type = Wireless - IEEE 802.11
NAS-Port = 40
Proxy-Policy-Name = Use Windows authentication for all users
Authentication-Provider = Windows
Authentication-Server = <undetermined>
Reason-Code = 5
Reason = The user account domain cannot be accessed.


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 00 00 00 00 ....


along with this one


Event Type: Error
Event Source: IAS
Event Category: None
Event ID: 5052
Date: 7/25/2007
Time: 1:37:22 AM
User: N/A
Computer: STONESERVER
Description:
There is no domain controller available for domain APARTMENT.LOCAL.


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


I have already checked and registered IAS with AD. I am not exactly
an
expert on this and could use any suggestions. I am wondering if its a
problem with vista or maybe something on that end is different than
XP, however I dont see a whole lot of options when configuring the
wireless.
I have heard that IAS can be touchy when connecting so i tried user +
password + doman as well as user@domain and from what i have searched
I cant really find a good article that shows how to set this up from
scratch, maybe I am missing something. All this is is a basic 1
server
and a few client setup I just want to beef up the security by adding
domain authentication and eventualy certificates (service is already
installed)


One thing I am not sure of is in the linksys setup for wireless
security there are many options that include a radius server WPA
Enterprise, WPA2 Enterprise as well as RADIUS, another question is
which one should I be useing, the RADIUS option has a WEP key in it
as
well but I dont have any option to use it either in the server setup
nor the clients. Can someone enlightn me?


Any help would be appreciated thanks.
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
chicagotech
Site Admin
 
Posts: 6486
Joined: Mon Nov 27, 2006 1:24 pm
Location: Chicago USA

Postby guest » Thu Nov 13, 2008 3:51 pm

The other reason for receiving this message is the user using his local user account to access the domain resource. The follwoing is the event logged when the user access the network resource over VPN.

Event Type: Error
Event Source: IAS
Event Category: None
Event ID: 3
Date: 10/31/2008
Time: 10:52:33 AM
User: N/A
Computer: DEVICES1
Description:
Access request for user baker was discarded.
Fully-Qualified-User-Name = CHICAGOTECH\baker
NAS-IP-Address = 172.16.252.254
NAS-Identifier = <not present>
Called-Station-Identifier = x.x.43.198
Calling-Station-Identifier = 67.162.x.x
Client-Friendly-Name = ASAVPN
Client-IP-Address = 172.16.252.254
NAS-Port-Type = Virtual
NAS-Port = 61
Proxy-Policy-Name = Use Windows authentication for all users
Authentication-Provider = Windows
Authentication-Server = <undetermined>
Reason-Code = 5
Reason = The user account domain cannot be accessed.
Tablet and Smartphone Setup Guide
http://www.quicksetupguide.com

Troubleshooting Vista Wireless
http://chicagotech.net/
guest
 
Posts: 9661
Joined: Mon Nov 27, 2006 1:10 pm


Return to Security

Your Ad Here

Who is online

Users browsing this forum: No registered users and 1 guest