Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1190
  • Last Modified:

NPS RADIUS auth problem

We have an NPS RADIUS auth. problem. Currently we are running a site with 1 RODC and 1 RWDC in paralell as we are transfering all the services to the new RWDC and preparing to demote the RODC. What is left to transfer before i demote RODC is NPS. We were testing RADIUS yesterday evening by powering of the old RODC and switching RADIUS server IPs on the APs. I installed NPS on RWDC and ”copied” the settings to match RODC. Made a wireless policy and created the RADIUS client entries. Checked Shared secret on both AP and NPS. Added RWDC to RAS and IAS servers group, rebooted and requested RAS and IAS server certificate. Checked certificates. Trusted Root Certification Authorities match and Intermediate Certification Authorities match on both DC's. BUT... We can’t get the clients to auth. The clients Wifi NIC hangs on ”confirming identity” when RADIUS server is set to the RWDC in the AP the client is connecting to. RODC or our backup NPS in a remote site works. Must be something i’m missing...

Ran wireshark on the client NIC as it was connecting.  npstest2.txt Se attached file (rename file ext to pcap) (opens in wireshark)

Event logs on server shows nothing for failed requests...

Is there anyone that can help me solve this? (Had to solve all my questions in here myself so far...)
1 Solution
eltel-it-norAuthor Commented:
This is caused by the setup of the cisco box. Upload plaintext config file and powercycle the device.

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now