Hello,
I recently implemented an NPS deployment within an enterprise environment, with the ultimate goal of using certificates and an NPS server to authenticate an 802.11x wireless network. I added the NPS role to one of the domain controllers, and created a GPO with the wifi and certificate configuration. Unfortunately, client computers with the GPO deployed cannot access the wireless network. I don't see rejections on the NPS server, it's almost like they are dropped. I tested domain username/password authentication by added my user account to the AD group, and that bounced back as approved (I'm using Meraki APs). When a computer tries to connect to the wifi, it's almost like the attempt is dropped. I've run through Technet articles for the last few weeks reviewing my configuration, but I can't find a reason for why this would be happening. Could someone help provide some insight?
Below is an outline of what I did.
1. Added APs as radius clients to the NPS server
2. connection request policy
a. Processing order 1
b. Conditions: NAS Port Type – Wireless – Other OR Wireless – IEEE 802.11
c. Authentication Provider Local Computer
3. Network Policies
a. Processing order 1, grant access
b. Condition: windows groups (the group contains Domain Computers and Domain Users)
c. EAP Configured
d. Ignore User Dial-In Properties: True
e. Access Permissions: Grant Access
f. EAP Method: Microsoft: Protected EAP
g. Authentication Method: EAP or MS-CHAP
h. NAP Enforcement: Allow full network access
i. Updated noncompliant clients: False
j. Framed Protocol: PPP
k. Service type: FramedAnd added a GPO with an 802.11x wifi configuration, and a trusted root certificate authority GPO for a certificate issued by the domain CA to the NPS Server.
Thanks!