Link to home
Start Free TrialLog in
Avatar of Colchester_Institute
Colchester_InstituteFlag for United Kingdom of Great Britain and Northern Ireland

asked on

Network Authentication failed on Windows 7 Client connecting to AeroHive Wireless, authenticating via Radius server.

Hi,
We are having issues with windows 7 clients connecting to our wireless network, when trying to connect it comes back with the error "Network Authentication failed due to the user account".  when we use another windows OS, or and apple device it asks you to trust the certificate. Once trusted it will connect. The windows 7 client doesn’t asked you to trust the certificate, and returns the above error.

Current set up is we use AeroHive access points  for client to connect to and they authenticate against our radius server.  We have purchased a certificate issued by Go Daddy with a Private key, and imported it in to our radius server.
Avatar of arnold
arnold
Flag of United States of America image

Is this an AD environment in which case you should push the signing Ca's public root in GPO which will propagate to the system when joined to the domain.
Does the client use certificate to authenticate?

When you say another windows newer or older? Public Ca, make sure the root certificates on the windows 7 system is updated, double check the wireless network configuration on win7 I.e. Type of negotiations it will engage in.
Avatar of Colchester_Institute

ASKER

We do have an AD environment, but these devices would be bring your own.  and not connecting to our domain.

their need would be to connect there personal laptop / mobile device to our network via wireless to gain internet access only.  using there AD credentials as authentication only.

we have tested it with  windows 8, MS mobile devices, apple devices - all of them come up with the trust certificate.  it just the windows 7 that's just errors and don't give you the option.
ASKER CERTIFIED SOLUTION
Avatar of arnold
arnold
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
If you're just using AD credentials this will purely be a trust issue.

The cert chain needs to be imported into the Win7 clients, or you'll need to install a different cert on your RADIUS box which has been issued by an already-trusted CA.

As a workaround you could tell Windows clients to not validate the server cert.  That will let Win7 clients connect, but it's insecure in that anyone could pretend to be your RADIUS.