Trying to set up WPA-2 Enterprise authentication for my wireless devices. I have an AD CS root CA and my NPS/Radius server has a machine cert that chains to the root CA:
When I join my wifi network from an iOS device, it asks for my user credentials and I enter my domain credentials. It then complains about not trusting the RADIUS server certificate (understandable since this device is not joined to our domain). But it gives me the option to trust the certificate anyway, and once I do, I'm authenticated.
When I join from my domain-joined Windows 8 tablet, it asks for my user credentials, I enter my domain credentials, and I'm authenticated. No problem.
When I join from my domain-joined Windows 7 laptop, it repeatedly tells me "unable to connect."
When I check the RADIUS server logs, it tells me "Authentication failed due to credentials mismatch." But I know my credentials are good because I used them from the iOS and Windows 8 devices:
When I check the workstation logs, I get various error messages. One says there's a "problem with the certificate on the server" but I know that's not true because my non-domain joined iOS device authenticated no problem as well as my domain joined Windows 8 workstation:
The other error message says a "user certificate required for the network can't be found on this computer." Well that shouldn't matter because again, no user certificate on the iOS device and it authenticated no problem. The Windows 8 and Windows 7 workstations both have auto-enrollment enabled for certificates, both have auto-enrolled user certs installed and both have the AD CS root cert installed:
So obviously seems like a Windows 7 issue, but can't figure out what. Thoughts?
Shaun