I installed and configured the user vpn profile successfully and connected to the remote server. I can see the authenticated user in the NPS audit logs.
Network tests
nslookup shows the correct dns server and is able to correctly resolve both hostnames and FQDNs.
I have also made sure to flush the ip configuration.
Problem
Attempting to access file shares on the user profile results in the message "the system cannot contact a domain controller to service the authentication request". After entering proper credentials I am then granted access to that PCs shares for the remainder of the vpn session.
Accessing the share with the FQDN does not prompt for authentication and instead immediately shows the available shares.
Using a device tunnel instead of a user tunnel fixes the problem of asking for authentication. I have renewed certificates for the domain controller and client pcs, yet still have this problem.
If any one can confirm if this is intended functionality or if there is a solution, it would be very much appreciated. Thanks!