We use a rather simple scheme in this situation which checks wether users are part of a group. If so access is granted based on WPA2-ENT with PEAP. Since several weeks (during my vacation) we have had an issue that is causing clients not to be able to log into WiFi anymore. It simply states;
Reason: Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing user account or the password was incorrect.
The strange thing is; This server also provides VPN access via a similiar scheme which is perfectly capable of checking the rights of the users. Also the passwords of the users are correct since all our users use the "sign in with Windows Credentials" option. Manually entering usernames in both DOMAIN\User or user@DOMAIN.example with correct passwords does not work and results in the same server-side error.
Clients are all Windows 8, NPS is Server 2012 Standard Build 9200 with all updates installed.
More info
- NPS server can reach (based on ping) via both IPv4 and IPv6.
- APs are registered in NPS as Cisco and non-NAP capable.
- APs run only IPv4.
- I have tried turning it off and on again.
Any suggestions as to where I may look for the solution?
EDIT Was unable to post this in the http://social.microsoft.com/Forums/en-US/partnerwinserver2012/threads forum due to the new interface...