Network Time Server Specification

Similar Messages

• How to configure Lion Server as network time server?

  I have Lion Server at the top of a small network of Windows 2K, Windows XP and Windows 7 machines.
  I need each of those computers to synch their time to that of the Mac Server because this network operates without internet access.
  I have tried various protocols from those machines to synch on the server's IP but they all fail.
  It has led me to belive I need to enable a service to allow time synch to the managed computers.
  But I can't find information on this.  I keep getting directed to how to synch the mac to a time server or time machine configuration tips.
  Thanks in advance

  In Server Admin, select your server, click on Settings, then go to the General tab.  You will see an option to enable the Network Time Server.

• Configure as network time server?

  Is it possible to configure Mac OS X Server on our Xserve to act as a 'network time server' so our Mac OS X computers can sync their clocks to it?
  We can't use any of the common Internet time servers because our corporate firewall blocks access to them.

  So are you saying I don't need to do any configuration on the Xserve to make it act as a network time server? Maybe I'm missing something, but that doesn't seem to work.
  I checked the 'Set the date and time automatically' box in the client's date/time prefs pane, and entered the IP address of the Xserve.
  But the client's clock doesn't update, and I get a lot of log entries reading, for example, "ntpdate\[14959\]: no server suitable for synchronization found", which seems to suggest it's not working.
  Other thoughts? Thanks...
  Message was edited by: Jim Williams4

• How can I set my date and time to ebay network time server?

  In the system preferences I would like to set the date and time to ebay UK time?
  I thought a quick google would be bring up the server and I can't find it.
  At the bottom of every ebay page there is a link to official ebay time
  But its not a live feed of time to get it to the second.
  I want it to be accurate so that I can use applescript to snipe bargins.
  Many Thanks
  Matt

  Just trying to go along the free route. I found Garage Buy   This doesn't work to well but lets you create an applescript and enters the auction into ical. Then you can set ical to run the script once it gets closer to the time.
  Ical only lets you set a time of a minute before the date. So you have to edit the script to add a Delay 59 to have it run 1 second before. From a few refreshes of the time page it looks like ebay time is a second behind, that could be easily be due to time to load the page. anyway i'll opt for a delay of 57secs and give that a try.

• HOW CAN I SET TIHE NETWORK TIME BECAUSE IT DOESNT ALLOW ME TO SING IN

  HOW CAN I SET TIHE NETWORK TIME in the apple tv BECAUSE IT DOESNT ALLOW ME TO SING IN

  Welcome to the Apple Community.
  Time and date should be set automatically by the network time server. There has been a number of posts reporting this problem. Solutions have involved:
  Restarting the Apple TV by removing ALL the cables for a few moments.
  Restoring the Apple TV.
  Opening port 123 on the router.
  Ensuring the DNS address on both the router and the Apple TV are those provided by your ISP.

• Time machine and network file server

  Hi,
  Is it possible to set up the time machine to a network file server which my macbook is able to see and use? Right now, time machine is limited to be used with a delicated external HD or another Mac...
  It would be convenient to share files between my 1st mac and other windows PCs.

  armyedwrd wrote:
  I believe I can do a work around by simply sharing my External HD so that that can happen. It's just very awkward to navigate to that shared drive each time we access it. If I had separate backup HDs for each MAC, I think I could use the TC as a media server (at least that's what I get from the marketing material here ).
  You might want to try one of the workarounds in #Q3 of Using Time Machine with a Time Capsule.
  Have you ever used Time Machine Editor? Is it worth downloading and using?
  It's not recommended;  Time Machine usually works best the way it was designed.  See Time Machine - Frequently Asked Question #13.

• HT1178 I bought Time Capsule specifically to back up my computer at work. Only my computer. I completed the steps the best of my knowledge but I got the message, "This device & its network services will be temporarily unavailable. Are you sure you want to

  I bought Time Capsule specifically to back up my computer at work. Only my computer. There are many computers within my department. I completed the steps the best of my knowledge but was unsure of which option to click. I clicked "I want to create a new wireless network". At the onset the instructions said I needed to connect with an ethernet cable, which I did. But I have no desire to connect to the internet, print from it, or have others access. I did deselect guest options, and I did put in passwords. But at the end of the process I got the message, "This device & its network services will be temporarily unavailable. Are you sure you want to continue."
  I was worried this would shut me down and I wouldn't be able to continue to work. I don't necessarily need to connect wirelessly. It is connected via ethernet cable from machine to device.
  Can you advise me how to continue? Did I choose the wrong options?

  I bought an external hard drive called "Seagate Backup Plus" From the Apple store to back up everything on my computer and anything new on my computer. It came with Time Machine. The external hard drive disk had 1 or 2 Terabytes. Time Machine says "next backup: When disk is connected." "Oldest backup: July 2, 2014." & Also "Latest back July, 2."

• Reset network Time Machine Server Settings

  Does anyone know how to reset the settings for the Mac Server Time Machine service? Somehow it is jacked up. I can backup to a network Time Machine and restore files through Finder but when I boot into recovery mode and try to do a restore, I can see the backup drive, I authenticate but then get an error saying it can't connect to server name.local. Doesn't appear to be issues with DNS. I have tried setting up a new external drive that hasn't been previously used before and it does the same thing. So I wanted to reset the settings without having to reset all the other services. Does anyone know where these settings for just the Time Machine Service are?
  Thanks,

  Richard,
  I am running a headless mac mini with Lion Server.  Same setup as yours, except externals are connected via USB.  I have no problems backing up our macbook pros over newtork via Time Machine.  My current backup drive is an old 500GB WD Book-whatever.  I have also successfully used a 2TB drive in a generic Rosewill JBOD external enclosure.  Both were freshly formated HFS+ (journaled) with GUID map prior to TM use.  Make sure you format journaled using GUID.
  I also get the "This disk drive may not support Time Machine backup over the network." popup but after ignoring it am able to add the disk (don't bother following the information link in the popup...hello 2005!).
  Not much help, but a note to say that it can be done and don't give up.
  Of note...if you are successful and one day you suddenly can't mount the backup volume on your server, fire up the Terminal and disable then reenable journalling on the volume using diskutil.  The Disk Utility app will check the drive/volume and say it they are fine, but the volume won't mount until you play with the journaling.

• Network Policy Server Event ID 6272 not being forwarded to Event Collector.

  Hi there
  I have configured an Event Subscription to collect events from 2 DCs that run RADIUS for network switches. It appears the events are being forwarded okay, I am getting the Security events (Logon and Logoff) on the event collector PC. However I am not getting
  any of the Network Policy Server security events (specifically Event IDs 6272), to centrally audit RADIUS logins to switches.
  The subscription is collector initiated, and I have added Network Service to the Event Log Readers Group. Is there something I am missing in the setup requirements for these events to be forwarded?
  Thank you,
  Kind regards
  Hylton

  Hi Gabriel101,
  Could you offer us more information about your environment, such as what edition server you are using, whether your AD and NPS role on the same server, whether your NPS working
  properly now, whether you can receive others security auditing.
  The related KB:
  NPS Local Log File Status
  http://technet.microsoft.com/en-us/library/cc735386(v=ws.10).aspx
  Event ID 6272 — NPS Authentication Status
  http://technet.microsoft.com/en-us/library/cc735388(v=ws.10).aspx
  I’m glad to be of help to you!
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Networked Time Machine Backup in Yosemite (10.10.1)

  Hello Everyone!
  I am having issue using a networked Time Machine volume with my Debian Box. Prior to 10.10.1 Yosemite update Time Machine was working just fine. Even issuing the command sudo tmutil setdestination "afp://<Remote Server Address>/Time\ Machine/<sparsebundle>" and defaults write com.apple.systempreferences TMShowUnsupportedNetworkVolumes 1, Nothing seems to work. Time Machine doesn't recognize the drive. I am able to connect to the drive by going to Go, but Time Machine still doesn't see the drive. My Debian Box is using Nettalk in conjunction with AFP. I followed this link as a guide. If anyone know a work around that would be greaaaaat.
  Thanks!

  A "Netatalk" server is unsuitable for use with Time Machine, especially if it's your only backup. I know this isn't the answer you want. I know Time Machine accepts the server as a backup destination. I know that the developer says the server will work with Time Machine, and I also know that it usually seems to work. Except when you try to restore, and find that you can't.
  Apple has published a specification for network devices that work with Time Machine. The incomplete, obsolete Netatalk implementation of Apple Filing Protocol doesn't meet that specification.
  If you want network backup, use as the destination either an Apple Time Capsule or an external storage device connected to another Mac or to an 802.11ac AirPort base station. Only the 802.11ac base stations support Time Machine, not any older model.
  Otherwise, don't use Time Machine at all. There are other ways to back up, though none of them is anywhere near as efficient or as well integrated with OS X. I don't have a specific recommendation.

• Very new user needs help setting up a three user network plus server

  Hi,
  I'm an owner/manager of a recruitment company in the UK and we use three mac minis in our office to run our recruitment software (on a filemaker database) internet, mail and MS Office 2008.
  We currently use one of the mini's as a 'server' in so much that it has a external HDD attached and shared across the network. We use Airport Extreme to share the internet.
  Although to begin with this set up has served us well the amount of data travelling across the network and the prospect of a couple of new employees starting has made me think it's time to invest in a network and server of some description.
  With my very limited knowledge i'm proposing the following but would greatly appreciate some assistance from the forum users!
  Install OSX 10.5.3 Server on one of the Mac Minis
  Get an ethernet switch and cable the three minis together
  Use the external HDD as a time machine backup and store all files on the 'server' HDD
  Continue to use the Airport Extreme to share the internet over airport.
  I have a couple of questions:
  Can the Server computer still be used as a desktop or do we need to buy a new mini
  Does this set up make the airport base station redundant
  As we grow I would envisage enlisting the help of a specialist Mac IT support company but in the mean time any help would be greatly appreciated.
  Thank you again in advance.

  I would get something better specified than a mini to be my Mac OS X based server, and although you can run it as a desktop I wouldnt advise it.
  You ought to go out and buy the book Mac OS X Server 10.5 Essentials - The only Apple-certified book on Mac OS X Server - which Ive found to be a godsend of a book in getting Leopard Server going. Make sure you get the 10.5 version. Im in the UK and got it from Foyles in London.
  Your approach is fine, but Leopard Server isnt as plug and go as the rest of Apples products. In particular it just doesnt function correctly if you do not have working DNS before you start. Period. If you dont understand DNS in your office or If having read the book you find its too technical you might be better off buying a no-brand Network File Store/Disk or even a Time Capsule from Apple if its mainly shared disk space that you need.
  Angus

• Front End network time and GUI time

  Hello,
  I am having a few doubts on the performance monitoring of SAP servers.
  GUI time - is the time taken for several communication steps between the SAP R/3 server and the local SAP R/3 frontend.
  After this definition i have a few doubts.
  1) what is the difference between, GUI time and front end network time?
  2) While calculating the processing time do we substract GUI time from the actual respone time?
  Please help.
  Thanks.
  Regards,
  Siddhartha

  Hi,
  F1 help provides the exact information of the each time specified in st03n..
  Further for your information:
  Frontend time:
  The front-end network time (FE Net time, fenettime, sometimes also called guinettime) is the time span that is consumed for sending data from/to the front end.
  However, no roundtrips (RFCs) for the GUI are included. These are entered in the GUITIME.
  If RFCs are involved on the server side, this time is specified with an incorrect value.
  The FE Net time is formed by the difference that arises between the response time from the view of the frontend and from that of the application serve
  GUI time:
  The GUI time is the time used in the network and the local front end for these communications steps (not the time in the application server, however). The GUI time does not contain the front end network time.
  Regarding the Processing Time:
  Please Refer following note 8963.
  For Response time Refer note 1063061 which gives clear idea of What is response time.
  Thanks and Regards,
  Balaji.S

• New Windows 7 formats Time server idle power levels

  Hi,  I am a new user of an NMH405 which I hope to upgrade to 3TB or 1.5TB raid1 (not 100% yet).  I bought the unit as a NAS unit (but chose this model as it was on special offer) hoping that I could use the media server features later.
  I have the unit working as a NAS using the original drive and have come up with some questions that I cannot find answered either in the documentation or the FAQ's and community posts.
  First Windows 7 appears to be only partialy supported.  The folder locations for media are different to Vista and there are new formats such as .WTV which replaces .DVR-MS as the default TV format.  The supplied backup software didn't install correctly and the update (well I think the import software is updated) on the website is hidden inside a huge .ISO file which is going to take hours to download.  However reading the posts indicates that the .DVR-MS format is only half supported.  Solutions involve editing an .XML file or customising the NTI backup in order to get files onto the server.  .WTV is not even mentioned anywhere.
  Is fully realised Windows 7 support going to be in the next release? and approximately when?
  I decided to use a static IP address for the server as I have been suffering master browser problems with Windows networking.  However I then ran into the Time server bug and had an 8 hour 14 minute offset to the system time.  I have temporarily solved this by assigning a reserved address in my DHCP server and reverting to DHCP mode.  However during the process I found that the NMH405 had become the master browser and solved the initial problem - ACE.
  Fix next firmware update?
  Drive support.  This is difficult to keep up to date and June 2009 is a little out of date.  Well hidden as well, I first found the list by accident but have since had difficulty finding it deliberately.  No "Avoid these drives" list though, but there is sporadic indiction of non-compatibility in the forums.  The list is date 7 days before the .ISO image and of course long before the October date of the latest firmware.  Cannot find an update notice indicating changes - e.g. drive support.
  Make it easier to find and try to keep it more up to date.
  Power levels and drive spin down.  From the data sheet 60W is the only indication, however a link to a third party indicates 13W but no spin down?.  With the emphasis on "Green Power" in the US I am suprised this information is not in bold in the data sheet (though other NAS vendors also hide it).  My unit will spend 80% of its life idle, I do hope the drives do get to spin down and extend their life and save power.
  Is direct Cisco information available rather than just third party?
  Finally perhaps a silly query, but why not.  Can I use a USB hub and attach multiple drives externally?
  StokersSon

  Hi,
  Thanks Wilkins377 for your two cents.  At least I know it should work.
  Well I now have upgraded to 2 x 1.5GB drives (not in the approved list) and have them working 100% as a raid pair.  Also Firmware to 3.18.15
  Using a USB hub I have got multiple HDD USB drives working - including NTFS formatted (read only of course).  So the hardware is all functional.
  However no matter how I format my 2GB and 4GB flash drives (FAT or FAT32 including alternate allocation size) the  mediahub does not see them in either port directly or the powered hub.  I am using an XP machine to format them.  An SD card is seen OK.
  Well flash is not important, being able to use multiple USB for backup and networked access is.  I am not likely to need to use the hub ports for media import as it is easier to get access to my PC and place the hub out of reach.
  I still cannot tell if the drives spin down, they are still quite warm after several hours of only the media hub and router being powered.  I need to get a stethascope and listen if they spin up on access, the nearby PC fans are too noisy.
  Regards
  StokersSon
  StokersSon

• Firewall blocks Apple's Network Time Protocol

  Hi,
  I admit to not fully understanding everything about the Firewall on OS X server 10.4.11 and I'm hoping someone can help with a little(?) problem.
  On the WAN side, my "gateway" server is connected directly to my SpeedTouch 780 modem with a fixed IP address. On the LAN side are a couple of switches and then an Airport Extreme base station (192.168.2.249). This broadcasts wirelessly to a more distant Airport Express (192.168.2.247). Both WiFi devices are configured to obtain the time from Apple's European servers.
  After completing a Carbon Copy Cloner of my OS partition and rebooting on my usual volume I noticed the following denials in my Firewall log:
  Dec 28 12:50:16 nl1 ipfw: 65534 Deny UDP 17.72.255.12:123 192.168.2.249:3987 in via en0
  Dec 28 12:40:25 nl1 ipfw: 65534 Deny UDP 17.72.255.12:123 192.168.2.247:3814 in via en0
  In SA --> Firewall --> Settings --> Services --> Edit Services for: 192.168.1-net (en0/modem connection)
  I have the "Allow only traffic for: 192.168.1-net on these ports" checked and
  NTP - Network Time Protocol UDP/TCP is also checked.
  Under, Edit Services for: any
  I have the "Allow only traffic for: any" checked and
  NTP - Network Time Protocol UDP/TCP is also checked.
  Under, Edit Services for: 192.168.2-net (en1/LAN)
  I have the "Allow all traffic for: 192.168.2-net" checked.
  1) Why is this traffic being blocked?
  2) Why does the port number seem to get changed in transit? (I've got NAT running and Open Directory).
  3) Does the configuration under, "Allow only traffic for: any" overrule all other Firewall settings? So if for example a port under, "Allow only traffic for: 192.168.1-net on these ports" wasn't checked but was under, "Allow only traffic for: any", would the traffic be allowed through?
  Thanks and happy new year!
  Michael Franks

  Do you have NTP activated? Does it work? If it doesn't and you have the firewall activated, then open the required port. If it is working then don't worry about it.

• NPS: Event 6274 - Network Policy Server discarded the request for a user

  Intermittently I will get desktop (wired) and laptop (wireless) computers experiencing issues with NPS (they drop off the network).
  Some computers are affected more than others, although they are identical hardware and based on a standard image.
  In the event log of the NPS servers I can see the following messages:
  Log Name:      Security
  Source:        Microsoft-Windows-Security-Auditing
  Date:          2/05/2014 8:47:58 a.m.
  Event ID:      6274
  Task Category: Network Policy Server
  Level:         Information
  Keywords:      Audit Failure
  User:          N/A
  Computer:      NT147.domain.local
  Description:
  Network Policy Server discarded the request for a user.Contact the Network Policy Server administrator for more information.User:
   Security ID:   NULL SID
   Account Name:   host/DPC0387.domain.local
   Account Domain:   DOMAIN
   Fully Qualified Account Name: DOMAIN\DPC0387$Client Machine:
   Security ID:   NULL SID
   Account Name:   -
   Fully Qualified Account Name: -
   OS-Version:   -
   Called Station Identifier:  3c-xx-xx-xx-xx-xx
   Calling Station Identifier:  00-xx-xx-xx-xx-xxNAS:
   NAS IPv4 Address:  10.nnn.nnn.nnn
   NAS IPv6 Address:  -
   NAS Identifier:   ND246
   NAS Port-Type:   Ethernet
   NAS Port:   71RADIUS Client:
   Client Friendly Name:  Network Device Management Subnet
   Client IP Address:   10.nnn.nnn.nnnAuthentication Details:
   Connection Request Policy Name: NAP 802.1X (Wired)
   Network Policy Name:  -
   Authentication Provider:  Windows
   Authentication Server:  NT147.domain.local
   Authentication Type:  -
   EAP Type:   -
   Account Session Identifier:  384F322E317838316564303034313030306230666632
   Reason Code:   1
   Reason:    An internal error occurred. Check the system event log for additional information.
  How do I debug when an internal error occurs but there is nothing in the system event log? Where else can I look?
  Here's the packet trace that matches the event log entry above:
  No.     Time        Source                Destination           Protocol Length Time from request Info
        1 0.000000    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Request, Identity
        2 2.470423    Universa_xx:xx:xx     Nearest               EAPOL    60                       Start
        3 2.472870    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Request, Identity
        4 2.539416    Universa_xx:xx:xx     Nearest               EAP      60                       Response, Identity
        5 2.544206    Universa_xx:xx:xx     Nearest               EAPOL    60                       Start
        6 2.548804    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Request, Identity
        7 2.550050    Universa_xx:xx:xx     Nearest               EAP      60                       Response, Identity
        8 2.552597    10.switch             10.NPS_Server         RADIUS   254                      Access-Request(1) (id=249, l=208)
        9 2.556043    10.NPS_Server         10.switch             RADIUS   136    0.003446000       Access-Challenge(11) (id=249, l=90)
       10 2.565876    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Request, Protected EAP (EAP-PEAP)
       11 2.569472    10.switch             10.NPS_Server         RADIUS   254                      Access-Request(1) (id=250, l=208)
       12 2.572566    10.NPS_Server         10.switch             RADIUS   136    0.003094000       Access-Challenge(11) (id=250, l=90)
       13 2.580254    Universa_xx:xx:xx     Nearest               TLSv1    123                      Client Hello
       14 2.586544    10.switch             10.NPS_Server         RADIUS   361                      Access-Request(1) (id=251, l=315)
       15 4.564841    Universa_xx:xx:xx     Nearest               EAPOL    60                       Start
       16 4.568530    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Request, Identity
       17 4.569876    Universa_xx:xx:xx     Nearest               EAP      60                       Response, Identity
       18 4.582263    10.switch             10.NPS_Server         RADIUS   254                      Access-Request(1) (id=252, l=208)
       19 4.586006    10.NPS_Server         10.switch             RADIUS   136    0.003743000       Access-Challenge(11) (id=252, l=90)
       20 4.591896    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Request, Protected EAP (EAP-PEAP)
       21 4.592692    Universa_xx:xx:xx     Nearest               TLSv1    123                      Client Hello
       22 4.599634    10.switch             10.NPS_Server         RADIUS   361                      Access-Request(1) (id=253, l=315)
       23 4.600887    10.NPS_Server         10.switch             IPv4     1518                     Fragmented IP protocol (proto=UDP 17, off=0, ID=07db)
       24 4.609920    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    1514                     Server Hello, Certificate, Certificate Request, Server Hello Done
       25 4.610516    Universa_xx:xx:xx     Nearest               EAP      60                       Response, Protected EAP (EAP-PEAP)
       26 4.617407    10.switch             10.NPS_Server         RADIUS   262                      Access-Request(1) (id=254, l=216)
       27 4.618352    10.NPS_Server         10.switch             RADIUS   288    0.000945000       Access-Challenge(11) (id=254, l=242)
       28 4.623650    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    176                      Server Hello, Certificate, Certificate Request, Server Hello Done
       29 4.643316    Universa_xx:xx:xx     Nearest               TLSv1    361                      Certificate, Client Key Exchange, Change Cipher Spec, Encrypted Handshake Message
       30 4.649607    10.switch             10.NPS_Server         RADIUS   601                      Access-Request(1) (id=255, l=555)
       31 4.656950    10.NPS_Server         10.switch             RADIUS   199    0.007343000       Access-Challenge(11) (id=255, l=153)
       32 4.662734    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    87                       Change Cipher Spec, Encrypted Handshake Message
       33 4.681106    Universa_xx:xx:xx     Nearest               EAP      60                       Response, Protected EAP (EAP-PEAP)
       34 4.788536    10.switch             10.NPS_Server         RADIUS   262                      Access-Request(1) (id=2, l=216)
       35 4.789735    10.NPS_Server         10.switch             RADIUS   173    0.001199000       Access-Challenge(11) (id=2, l=127)
       36 4.795723    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    61                       Application Data
       37 4.796372    Universa_xx:xx:xx     Nearest               TLSv1    93                       Application Data
       38 4.802368    10.switch             10.NPS_Server         RADIUS   331                      Access-Request(1) (id=3, l=285)
       39 4.803363    10.NPS_Server         10.switch             RADIUS   189    0.000995000       Access-Challenge(11) (id=3, l=143)
       40 4.808905    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    77                       Application Data
       41 4.809501    Universa_xx:xx:xx     Nearest               TLSv1    77                       Application Data
       42 4.817342    10.switch             10.NPS_Server         RADIUS   315                      Access-Request(1) (id=4, l=269)
       43 4.822986    10.NPS_Server         10.switch             RADIUS   189    0.005644000       Access-Challenge(11) (id=4, l=143)
       44 4.828973    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    77                       Application Data
       45 4.833318    Universa_xx:xx:xx     Nearest               TLSv1    829                      Application Data
       46 4.840610    10.switch             10.NPS_Server         RADIUS   1073                     Access-Request(1) (id=5, l=1027)
       47 4.845946    10.NPS_Server         10.switch             RADIUS   189    0.005336000       Access-Challenge(11) (id=5, l=143)
       48 4.850938    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    77                       Application Data
       49 4.907924    Universa_xx:xx:xx     Nearest               TLSv1    141                      Application Data
       50 4.913390    10.switch             10.NPS_Server         RADIUS   379                      Access-Request(1) (id=6, l=333)
       51 4.917535    10.NPS_Server         10.switch             RADIUS   221    0.004145000       Access-Challenge(11) (id=6, l=175)
       52 4.922877    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    109                      Application Data
       53 4.923472    Universa_xx:xx:xx     Nearest               TLSv1    61                       Application Data
       54 4.930319    10.switch             10.NPS_Server         RADIUS   299                      Access-Request(1) (id=7, l=253)
       55 4.937348    10.NPS_Server         10.switch             RADIUS   381    0.007029000       Access-Challenge(11) (id=7, l=335)
       56 4.942543    JuniperN_xx:xx:xx     Universa_xx:xx:xx     TLSv1    269                      Application Data
       57 4.944791    Universa_xx:xx:xx     Nearest               TLSv1    125                      Application Data
       58 4.951408    10.switch             10.NPS_Server         RADIUS   363                      Access-Request(1) (id=8, l=317)
       59 4.954022    10.NPS_Server         10.switch             RADIUS   355    0.002614000       Access-Accept(2) (id=8, l=309)
       60 4.981482    JuniperN_xx:xx:xx     Universa_xx:xx:xx     EAP      60                       Success
       61 32.590347   10.switch             10.NPS_Server         RADIUS   361                      Access-Request(1) (id=251, l=315)
       62 62.592420   10.switch             10.NPS_Server         RADIUS   361                      Access-Request(1) (id=251, l=315)
       63 92.595043   10.switch             10.NPS_Backup_Server  RADIUS   361                      Access-Request(1) (id=9, l=315)
       64 122.597856  10.switch             10.NPS_Backup_Server  RADIUS   361                      Access-Request(1) (id=9, l=315)
       65 152.600618  10.switch             10.NPS_Backup_Server  RADIUS   361                      Access-Request(1) (id=9, l=315)

  A belated thanks for your reply.
  Our environment doesn't have NPS accounting configured so that was easy to rule out.
  The mid-day drop outs have stopped after I added "set protocols dot1x authenticator no-mac-table-binding" to our Juniper switches (which prevents mac address aging from clearing the active dot1x client session).
  I believe the above error message occurs because the RADIUS session ID is rejected / ignored because of some quirks in the RADIUS standard.  At the start of a dot1x authentication request a RADIUS session ID is created.  For whatever reason the
  RADIUS/NAP server stops responding and the Juniper switch fails over to the backup RADIUS/NAP server configured.  The session ID is kept (per RADIUS standard) but the backup RADIUS/NAP server doesn't know about the session, so this event: "Network
  Policy Server discarded the request for a user." occurs.
  It would be nice to see a clearer error message "Invalid RADIUS session" or similar.
  There is a Microsoft guide on how to set up RADIUS/NAP servers in a highly available configuration - something to do with RADIUS proxy servers.
  It would be even nicer to see some kind of RADIUS session synchronisation between NAP servers... if it doesn't already exist?
  I am having the same exact issue you posted on here except I have Extreme Network switches. Some of my computers, various hardware, will randomly not authenticate during re-authentication. The switch says that it failed to contact the NPS server so then it
  switches to my backup server. The client has a random time on how long it waits to authenticate so sometimes I end up having the disable/re-enable the port they are connected to so that the session is started again. I see that you basically removed the option
  to force clients to re-authenticate Any downfall disabling that?. Any idea why the NPS server is no longer responding? Are you using Windows Server 2012?