I have setup a WPA2-EAP Wireless Network Using Network Policy Server, AD and Group Policies. We are using two Watchguard AP100s (wireless access points) with a Watchguard XTM535 firewall, in conjunction with a Windows 2008 R2 server, running a NPS. I am trying to restrict both the computers that connect to the wireless network, and the users that connect. At the moment I have two network policies one for computers and one for users and I want them to work as an ‘AND’ situation rather than an ‘OR’ situation. Can anyone help?
In addition my two Windows domain user accounts (one standard, and one with full AD permissions [Enterprise Admin, Schema Admin, etc.]) can connect to the wireless network even though neither account is a member of the Wireless Users group, which is rather worrying, and I’m concerned that there might be other domain user accounts that can also connect even though they are not members of this group.