Hi,
I am trying to Setup Windows 2012 R2 NPS Radius Server, my lab setup is as below
1. AD + DNS Installed in a Server IP : 192.168.2.5 (Domain Name PDC.mydomain.com)
2. DHCP + NPS + ADCS + IIS All these roles are installed at another server IP: 192.168.2.6 (Which is my domain client)
3. We have primary firewall in amid, i configured DHCP Relay Agent at my firewall,when client requests for IP my Windows DHCP Server distributes the IP.
But unfortunately for my Unifi Access Point it fetches the IP but not getting assigned, so statically i configured a IP like 192.168.2.7 at my Unifi Access point.
4. For my lab setup i have 2 PC's one Windows 10 another Windows 7 and android mobiles (I even need to configure the access for Apple Mac and Iphone)
I configured the Radius Server Details like its IP, Authentication\Accounting Port and Shared Secret Key in my Unifi Access Point.
I created a Self Signed Certificate by going into Certificate Authority--->Certificates Template --->Manage ---> RAS and IAS Server by right clicking and selecting Duplicate Template--->Changed the compatibility Certification Authority-->Windows
Server 2012 R2 and Certificate recipient as Windows 7 / Windows 2008
Under General Tab-->Named as NPS_Cert
Security Tab --> Selected Enroll,Autoenroll option to RAS and IAS Server
and left all other options to its default .
Later going into my Domain Controller and configured GPO--->Computer Configuration--->Security Settings --->Public Key Policies--->Certificate Services client -Auto Enrollment Settings--> Automatic certificate management (Enabled) enroll new
certificates renew expired certificate (Enabled) update and manage certificates that use Certificate templates from AD (Enabled)
After updating the group policy i can find my custom certificate under NPS---> Network Policies --->Constraints--->Authentication Methods--->Microsoft Protected EAP PEAP (PDC.mydomain.com) Certificate!!
For testing phase Windows 10 is non-domain joint and Windows 7 is domain client, when i try to connect wifi using domain credentials at windows 10 machines its gets connected and even the DHCP distributes the IP and can able to access the network, but now when
i try to connect wifi it prompts for credentials but says Can't connect to the network.
Where as when i try to connect Wifi at my Windows 7 machines it prompts for credentials and sometimes get connected but IP doesn't applies, shows as Unidentifed Network and finds APIPA IP unders IP Details and most of the time it shows network not available.Also
some time when i create Manual Network connection at Windows 7 and removes the option Validate the server Certificate it gets connected still IP is not getting assigned.
The same when i try to connect at my Android Mobile IP is not getting assigned.
Any help please!!!
Mohammed...