RADIUS automatic authentication
Hello everyone, I'm deploying a new RADIUS infrastructure in an organization, but we are facing a problem with the Authentication, when an user, with a domain-joined PC connects to the network, it...
View ArticleRenewed CA cert and now a lot of users cannot connect to wireless network...
Hello, about a month ago i renewed the certificate from my subca for the clients to connect to our wireless network using eap-tls. Yesterday the old cert expired and about half the users in the...
View ArticleWhat is the best practice to give a user permission to “Join to the Domain”?
I am not sure what the best practice to give a user permission to join to the domain?Is it just giving delegate permission (Take Ownership or WRITE_DAC) on the Computer Object? or some other way which...
View ArticleRadius server
Hello. Hope you'll doing good.We have RADIUS Server Microsoft Windows Server 2012 and Cisco switch as authenticator.In debug messages on the switch we see that switch send's access-request message, but...
View ArticleRemote VPN clients using Windows 7 or higher
We have contractors that connect to our network using their own computers. The computers are Windows 7 or higher. The computers are NOT domain members.I recently read where NAP is deprecated in Windows...
View ArticleNPS on Windows server 2012 can't authenticate
Hello,I've update (with windows update) a windows server 2012 and reboot it.After that, NPS server does not work.When i stop the NPS service, WIFI clients connects to another server but when i launch...
View ArticleClik here to view.
The client could not be authenticated because the Extensible Authentication...
I have been trying to setup a Wireless network using EAP-TLS on a Server 2012R2 machine with Win7 and Win 10 clients in a domain environment. The setup is as follows: Cisco WAP321 AP - Configured...
View ArticleNPS wireless policy
hello, my wireless policy condition is NAS Port Type Wireless - IEEE 802.11 and Wireless - other. with EAP (PEAP) constraints.I would like to filter out anything that is not a domain device. I tried...
View ArticleInstalling User Certificates on Non Domain Equipment for NAP
Current setup:An NPS server which implements NAP Wireless 802.1X using computer certificates.Certificates are distributed through GP to all machines.This works fine in that domain machines all get a...
View ArticleNPS using PEAP and PAP for MAC Authorization
I have some questions dealing with MAC authorization, PAP, and PEAP. At my company our current wireless configuration is using a Win2k3 IAS server with certificate based EAP-PEAP authentication using...
View ArticleCan not connect to VPN server from outsite network
Hello, My name is Linh.Could you help me the problem as below:My VPN server configure on Window server 2012 R2 standard, im also opened port 1723 on router, turn off all firewall on my server, allow...
View ArticleHow To prevent non-domain computers from accessing domain share folders by...
Hi.i am using windows server 2008 R2 as a domain controller and another machine with windows server 2008 R2 also as file sharing server and when i am accessing domain users`s share folders by their...
View ArticleNPS discards RADIUS req from cisco switch
Hi all,I need some assistance with configuring NPS to validate cisco switch. I am trying to implement NEAT technology with wired 802.1x authentication. My supplicant sw 2960 is unable to authenticate...
View ArticleNAP - One site unable to connect to RADIUS Wifi
Hello,We have a Windows RADIUS Server and multiple sites that connect using VPN tunnels. At one site we are unable to connect to the RADIUS SSID. I've verified in the Windows 2012 Radius log that...
View ArticleRadius and nps
When reading about nps, radius always comes around, I do know Radius is something completely different, but i never found a tutorial that explains the difference.Anyway who knows the answer? When...
View ArticleNPS Cross Forest authentication
Hi, customer has two AD Forests with 2-way forest-wi de trust and suffix routing enabled for all suffixes. On-premises users from both forests are synced with Azure ADConnect to Azure AD.Users from...
View ArticleWindows 7 Clients wireless authentication failure with SHA 256 Kerberos Key
Is there a known issue with using SHA256 certificates with NPS Server? We swapped our SHA1 keys and only Win7 clients could not connect. Phones and Win10 systems had no issues.David Jenkins
View ArticleSegregate servers from workstations
I’m doing a restructuration of my domain network, and I was thinking about creating two networks, one for the servers and the other for the workstation, allowing only the communications of the...
View ArticleNPS - MAC Address Filtering for Wireless Devices not in Security Group
Hi AllI have 2 wireless networks for my company:Guest – non employees use this and is secured by WPA2 shared key. This network has no access to company resources and just has internet accessUser – for...
View ArticleRadius Server Certificates
Hi,im trying to set up RADIUS authentication for wireless access but somehow it would not work if the RADIUS server is in a different VM with the AD and CA. it worked when the RADIUS, AD and CA were in...
View Article