Hi,
I have found several posts related to this and none seem to work..
We use a windows based NPS. it is currently set to allow anyone to connect with their domain username and password.
I am trying to restrict Mobile Phones (iphone and android) from connecting to our wireless network.
So to the Network Policy I added "Domain Computers" (using "Windows Groups", I also tried "Machine Groups") within the Conditions tab.
I tested to see if a laptop could still connect and it could not.
I have tried many many different combinations within the conditions tab to try and get this working but to no avail.
1. just having "domain computers" (either windows or machine groups)
2. having domain users and domain computers (with all combinations of windows/machine/users groups)
3. I even tried Operating system conditions
These are all set in "And" values, if set to OR (in combination with Domain Users) then the laptop connects, but then so does the phone.
And no matter what value I set the Windows 7 SP1 laptop would not connect, unless the only condition around was "Windows Groups" - "Domain Users"
I have tried:
http://social.technet.microsoft.com/Forums/en-US/winserverNAP/thread/617e7dde-202e-4d31-bd40-3e8f8043bf86
http://www.edugeek.net/forums/windows-server-2008-r2/72277-wireless-authentication-nps-machine-groups-policy.html
http://technet.microsoft.com/en-us/library/cc731220(v=ws.10).aspx
and several others...
When Domain Computers is used, I have seen that the wireless is connected pre-logon, but as soon as the user is logged in the wireless disconnects, never to reconnect.
Please can someone help me with this.
Thanks,
-Tim
