Hello,
We have a WPA2 enterprise wireless network using Server 2008R2 as a Radius server. For most student accounts, the connection to the wireless network works just fine, but we have several accounts that are restricted in Active Directory to log onto only certain machines. When one of these users try to connect to the wireless, they get "Network authentication failed". They are trying to log onto a machine that is defined in the "Log on to" properties of their active directory account. Accounts that are not restricted to certain machines work fine, it's only these restricted accounts that can't seem to connect. Multiple internet searches don't really show much info about this particular problem, since the network is working as expected for all other accounts.
We are using Microsoft PEAP, not validate server certificate.
I have tried to add the wireless AP controller (HP MSM765) and the Windows Radius server to the allowed list of machines the client can log onto, but that didn't help. I don't really want to mess too much with the network because it is working for 99% of our students, just a handful of restricted accounts that never seem to connect.
If I hard-wire the laptop to the network, the student logs in and authenticates ok. Remove the hard-wire, student can't connect to the wireless.
Has anybody ever had a similar experience?