Re: RRAS Error message 930
From: Robert L [MS-MVP] (noreply_at_hotmail.com)
Date: 08/05/04
- Previous message: Matt Hickman: "Re: RRAS, VPN and NAT"
- In reply to: Ron e.: "RRAS Error message 930"
- Next in thread: Ron e.: "Re: RRAS Error message 930"
- Reply: Ron e.: "Re: RRAS Error message 930"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 5 Aug 2004 14:09:31 -0500
quoted from http://www.ChicagoTech.net
Error 930: The authentication server did not respond to authentication
requests in a timely fashion.
SYMPTOMS: after setup Routing and Remote Access service for VPN or dial-up
on a server to use RADIUS, or upgrade the server to a new OS, 1) the client
computers may receive the following error message: Error 930: The
authentication server did not respond to authentication requests in a timely
fashion. 2) On the RRAS server Event ID: 20073 The following error occurred
in the Point-to-Point Protocol module port: Port, UserName: Username. The
authentication server did not respond to authentication requests in a timely
fashion. 3) On the IAS server, the following error message may be reported
Event ID: 13 A request was received from the invalid client IP Address
IP_Address.
Causes: 1) The default path to the Remote Access log file has been changed
or is not valid.
2) The VPN server has not been set up as a RADIUS client in the IAS.
3) This behavior will occur if the VPN user has permissions to read only on
the Active Directory directory service record.
4) Refer to error 619 resolution - add the vpn to the appropriate group.
-- For more and other information, go to http://www.ChicagoTech.net Don't send e-mail or reply to me except you need consulting services. Posting on MS newsgroup will benefit all readers and you may get more help. Robert Lin, MS-MVP, MCSE & CNE Networking, Internet, Routing, VPN, Anti-Virus, Tips & Troubleshooting on http://www.ChicagoTech.net This posting is provided "AS IS" with no warranties. "Ron e." <Rone@discussions.microsoft.com> wrote in message news:EB821854-F987-436B-B8CB-E38B6202B9AA@microsoft.com... >I have a Windows 2000 RRAS VPN server; we are in the process of migrating > from a Windows NT 4.0 domain to a new Windows 2003 AD domain. The RRAS box > has not been migrated to the new domain yet. We are using ADMT to migrate > users and capture SID history. Users are granted access to the VPN using a > policy based on group membership. A two-way trust is on place between the > two > domains. Users migrated to the new domain can no longer logon to the VPN. > They receive this error: > > Error 930: The authentication server did not respond to authentication > requests in a timely fashion. > > The RRAS Event Viewer has the following errors: > > Event Type: Error > Event Source: RemoteAccess > Event Category: None > Event ID: 20073 > Date: May 22, 2001 > Time: 11:59:48 A.M. > User: N/A > Computer: Computername > > Description: > The following error occurred in the Point-to-Point Protocol module port: > Port, UserName: Username. The authentication server did not respond to > authentication requests in a timely fashion. > > I have read both KB299684 & KB826899 and neither apply. > I enabled tracing on the RRAS server user the netsh ras set tracing * > enabled command and got the following from the IASSAM log: > [1888] 10:36:11:136: NT-SAM Names handler received request with user > identity ABDI\adt. > [1888] 10:36:11:136: Username is already an NT4 account name. > [1888] 10:36:11:136: SAM-Account-Name is "ABDI\adt". > [1888] 10:36:11:136: NT-SAM Authentication handler received request for > ABDI\adt. > [1888] 10:36:11:136: Processing MS-CHAP v2 authentication. > [1888] 10:36:11:167: LogonUser succeeded. > [1888] 10:36:11:183: NT-SAM User Authorization handler received request > for > ABDI\adt. > [1888] 10:36:13:495: Opening LDAP connection to ad-rwc-dc.abdi.corp. > [1888] 10:36:13:542: LDAP connect failed: The system cannot open the > device or file specified. > [1888] 10:36:15:792: Using downlevel dial-in parameters. > [1888] 10:36:15:792: NTDomain::getConnection failed: The system cannot > open > the > device or file specified. > [1888] 10:36:15:792: Could not open an LDAP connection to domain ABDI. > [1888] 10:36:15:792: Retrying LDAP search. > [1888] 10:36:15:792: NTDomain::getConnection failed: The system cannot > open > the > device or file specified. > [1888] 10:36:15:792: Could not open an LDAP connection to domain ABDI. > [1888] 10:36:15:792: Per-user attribute retrieval failed: The system > cannot > open the > device or file specified. > > > In the new Windows 2003 domain under 'Active Directory Users and Computers' > I see a new group called "RAS and IAS Servers" this group has no members > and > it will not let me add the RRAS server from the other domain > >
- Previous message: Matt Hickman: "Re: RRAS, VPN and NAT"
- In reply to: Ron e.: "RRAS Error message 930"
- Next in thread: Ron e.: "Re: RRAS Error message 930"
- Reply: Ron e.: "Re: RRAS Error message 930"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
