Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1415
  • Last Modified:

Testing aruba controller AAA test server with NPS 2008 successful, but windows 7 fails to connect to SSID

Dear All,
 
I have installed NPS on windows server 2008 R2. setup network policies. I also setup radius server on the Aruba controller, and when I use the Diagnositics>AAA test server with a user name and password I get authentication successful, also I can see it in the logs on NPS. but when I try to connect to the SSID I can't and I get this error on NPS:
"Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect."
 
I checked every post available, followed every setup but I can't make it work. the only post i saw that had a solution to a similar problem I had, the user just installed NPS on a different server with basic configuration and it works. problem is I just installed NPS and another server is not an option.
 
I am using protected EAP with MS-CHAP-V2. im not interensted in having certificates for now, cause im week in them.
 
any help would be highly appreciated.
0
matfme
Asked:
matfme
  • 5
  • 2
1 Solution
 
Jakob DigranesSenior ConsultantCommented:
Are you using machine or user authentication?
that is - in Network Policies in NPS - the group limiting access - is it a user group, machine group or both?

WIndows 7 often select Machine authentication automatically if you do not set it to user
0
 
matfmeAuthor Commented:
In NPS - under conditions I have added a windows group domain users. I also added Domain computers once and removed it but it didn't work.

how to setup windows 7 to take user authentication, because take a look at the log:
User:
      Security ID:                  NULL SID
      Account Name:                  host/IT_Security.domain.com
      Account Domain:                  domain
      Fully Qualified Account Name:      domain\IT_SECURITY$

I think it is trying machine authentication, althought I added a domain computers group to network policy it wasn't working.
0
 
matfmeAuthor Commented:
I checked the option to use user authentication, now the logs on NPS are showing granted full access but I cannot connect to wireless network, strange
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
Jakob DigranesSenior ConsultantCommented:
What roles are you given in Aruba? Have the client got an IP-Address?
With 802.1X authentication; you won't get an IP-address until AFTER authentication, and if DHCP or VLANs aren't working - you won't get an address ...

go to monitoring - clients and see What role you've got
0
 
matfmeAuthor Commented:
i just needed to restart my computer, my wireless card was problematic. it is working now.
0
 
matfmeAuthor Commented:
windows was sending machine authentication, which radius didn't know how to deal with, because eap mschap v2 is set. i changed an option on the wireless configuration on the client side and it is working fine.
0
 
matfmeAuthor Commented:
thanks a lot, I appreciate the help. :)
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now