Solved

Testing aruba controller AAA test server with NPS 2008 successful, but windows 7 fails to connect to SSID

Posted on 2013-06-11
7
1,346 Views
Last Modified: 2013-06-11
Dear All,
 
I have installed NPS on windows server 2008 R2. setup network policies. I also setup radius server on the Aruba controller, and when I use the Diagnositics>AAA test server with a user name and password I get authentication successful, also I can see it in the logs on NPS. but when I try to connect to the SSID I can't and I get this error on NPS:
"Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect."
 
I checked every post available, followed every setup but I can't make it work. the only post i saw that had a solution to a similar problem I had, the user just installed NPS on a different server with basic configuration and it works. problem is I just installed NPS and another server is not an option.
 
I am using protected EAP with MS-CHAP-V2. im not interensted in having certificates for now, cause im week in them.
 
any help would be highly appreciated.
0
Comment
Question by:matfme
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
7 Comments
 
LVL 21

Accepted Solution

by:
Jakob Digranes earned 200 total points
ID: 39237392
Are you using machine or user authentication?
that is - in Network Policies in NPS - the group limiting access - is it a user group, machine group or both?

WIndows 7 often select Machine authentication automatically if you do not set it to user
0
 

Author Comment

by:matfme
ID: 39237405
In NPS - under conditions I have added a windows group domain users. I also added Domain computers once and removed it but it didn't work.

how to setup windows 7 to take user authentication, because take a look at the log:
User:
      Security ID:                  NULL SID
      Account Name:                  host/IT_Security.domain.com
      Account Domain:                  domain
      Fully Qualified Account Name:      domain\IT_SECURITY$

I think it is trying machine authentication, althought I added a domain computers group to network policy it wasn't working.
0
 

Author Comment

by:matfme
ID: 39237456
I checked the option to use user authentication, now the logs on NPS are showing granted full access but I cannot connect to wireless network, strange
0
DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

 
LVL 21

Expert Comment

by:Jakob Digranes
ID: 39237470
What roles are you given in Aruba? Have the client got an IP-Address?
With 802.1X authentication; you won't get an IP-address until AFTER authentication, and if DHCP or VLANs aren't working - you won't get an address ...

go to monitoring - clients and see What role you've got
0
 

Author Comment

by:matfme
ID: 39240086
i just needed to restart my computer, my wireless card was problematic. it is working now.
0
 

Author Closing Comment

by:matfme
ID: 39240090
windows was sending machine authentication, which radius didn't know how to deal with, because eap mschap v2 is set. i changed an option on the wireless configuration on the client side and it is working fine.
0
 

Author Comment

by:matfme
ID: 39240091
thanks a lot, I appreciate the help. :)
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

My purpose is to describe the basic concepts of virtual memory as implemented in a modern Windows-based operating system. I will also describe the problems inherent in older systems and how virtual memory solves them. The dark ages - before virtu…
INTRODUCTION The purpose of this document is to demonstrate the Installation and configuration of the Data Protection Manager product. Note that this demonstration was prepared on the basis of Windows OS is 2008 R2 and DPM 2010. DATA PROTECTI…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question