issue condition:
windows 2008 r2: VMware OS(new installed)
with domain controller
certificate auth
import third party root ca enterprise.der into trusted store
NPS service: use eap-tls for 802.1x authentication
client with third party client.pfx(user: MAC address has been created in domain with dial-in checked and store password encryption) in it without CA(no validate server certificate)
when client auth to network: the log event 4625 and 6273(reason 16) will occur at the same time, 4625 is at the front of 6273.
event 4625: a user failed login, 0000064(user name doesn't exist)
event 6273: "Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect."
I have try so many method to slove this issue many days, but no result. below is my way:
1.change the NTLMv2 to NTLM
2.renew the windows 2008 R2 SID
3.allow SID/anonymous transition
4....
for few days, not result, is there anyone could help me? pleasure thanks.