Event ID - 6272

Event Id6272
SourceMicrosoft-Windows-Security-Auditing
DescriptionNetwork Policy Server granted access to a user.

User:
      Security ID:<Security ID>
      Account Name: <Account Name>
      Account Domain: <Domain Name>
      Fully Qualified Account Name: <Fully Qualified Account Name>     

Client Machine:
      Security ID: <Security ID>
      Account Name: <Account Name>
      Fully Qualified Account Name: <Fully Qualified Account Name>
      OS-Version: <OS-Version>
      Called Station Identifier: <Called Station Identifier>
      Calling Station Identifier: <Calling Station Identifier>     

NAS:
      NAS IPv4 Address:<NAS IPv4 Address>
      NAS IPv6 Address: <NAS IPv6 Address>
      NAS Identifier: <NAS Identifier>
      NAS Port-Type: <NAS Port-Type>
      NAS Port: <NAS Port>     

RADIUS Client:
      Client Friendly Name: <Client Friendly Name>
      Client IP Address: <Client IP Address>     

Authentication Details:
      Proxy Policy Name: <Proxy Policy Name>
      Network Policy Name: <Proxy Policy Name>
      Authentication Provider: <Authentication Provider>
      Authentication Server: <Authentication Server>
      Authentication Type: <Authentication Type>
      EAP Type: <EAP Type>
      Account Session Identifier:<Account Session Identifier>     

Quarantine Information:
      Result: <Result>
      Session Identifier: <Session Identifier>     

Event InformationCause :
This event is logged when Network policy server granted access to a user.
Resolution :
This is an information event and no user action is required.
Reference Links

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.
 Refresh