I have some Cisco Aironet 2700's running autonomous. I am trying to authenticate both the computer account and user account against AD, before allowing a connection using a 2008 R2 NPS server acting as a RADIUS server.
The problem seems to be that the AP's are sending both the computer names and the usernames as to the NPS server as a username.
For example here's what I pulled from the NPS log:
A computer name: <Fully-Qualifed-User-Name data_type="1">HHH.COM\PC-L
And a username: <Fully-Qualifed-User-Name data_type="1">HHH.COM\Some
Here's my NPS config:
And the config file from one of my AP's
I've also attached screenshots from the access point if that helps.
My plan is to have two policies, first the one shown above, and then a second one that only checks the machine group in case no user is logged in.
Any help is appreciated.