Link to home
Start Free TrialLog in
Avatar of InSearchOf
InSearchOfFlag for United States of America

asked on

Can't connect to wireless network using Radius

I am trying to use NPS running on a windows 2008 R2 Enterprise server for wireless access. I have a Meraki wap as a Radius client. I have the Radius configuration set on the WAP as well as the radius client. When I test the connection from the dashboard it fails with:

"Authentication failed while testing on one of your APs. This means the RADIUS server was reached but your credentials were incorrect. The test was stopped to prevent this account from being locked out due to multiple failed attempts. Please try again with different username and/or password. " (See attachment)

When I try to connect to my wireless network from a laptop I get an error complaining about EAP type (See attachment)
I am trying to use EAP-TLS authentication.

On my Radius server I have the following roles:
AD DS
AD CS
NPS
IIS
I have a connection policy and a network policy configured
DNS
Radius_Test_Meraki_WAP.txt
Wireless_Connection_Laptop.txt
Network-Policy.docx
Connection-Request.docx
SOLUTION
Avatar of Maclean
Maclean
Flag of New Zealand image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of InSearchOf

ASKER

Thanks for the reply. The issue is not with the credentials. I followed the Meraki tutorial for setting up the configuration. For testing I am using a simple shared secret password on the radius client and using my own upn domain user credentials with no firewall when testing and still no change. I have tried deleting and re-adding the WAP in NPS configuration a few times. My problem is not incorrect user credentials.
ASKER CERTIFIED SOLUTION
Avatar of Wirelessnerd
Wirelessnerd
Flag of Belgium image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
I figured out what my problem was. As it turns out after talking to Meraki I found out that the test fails because the WAP itself cannot be configured to use EAP-TLS for the test. My laptop connection failed because for whatever the reason I did not have the user or computer certs in my personal cert store. Once I jacked into the LAN and requested the certs I was able to connect.