+ Post New Thread
Results 1 to 8 of 8
Wireless Networks Thread, Problem authenticating users with NPS (Server 2008) on Wireless Network in Technical; Interesting problem which has been driving me and the guy who installed the Wireless network nuts. We've recently installed a ...
  1. #1
    amyr's Avatar
    Join Date
    Jan 2007
    Location
    Havant/Portsmouth
    Posts
    155
    Thank Post
    0
    Thanked 3 Times in 3 Posts
    Blog Entries
    1
    Rep Power
    16

    Problem authenticating users with NPS (Server 2008) on Wireless Network

    Interesting problem which has been driving me and the guy who installed the Wireless network nuts. We've recently installed a Trapeze wireless network, using an MX-Switch and Trapeze MP-82's.
    We've installed Network Policy Server and the certification server that is also required (Windows 2008 SP2 domain controllers). Clients are running XP SP3. We've configured the Network Policy Server to use PEAP MS-Chap-v2.

    The problem we have is that only domain admins can login and get an IP address, normal user's can't - it fails to authenticate and get an IP address. We've tried a radius ping from the Mx-Switch and that responds fine and authenticates.

    This has really got us puzzled. We've got it logged with Trapeze as well, but just thought I'd see if anyone else has come across this before?!?

  2. #2
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,424
    Thank Post
    10
    Thanked 488 Times in 428 Posts
    Rep Power
    111
    Which groups are set in the network policy rule? Thats what decided which groups will authenticate. Also check the security log on the NPS server as that will log the failure reason. They are probably not matching a rule at the moment.

  3. #3
    amyr's Avatar
    Join Date
    Jan 2007
    Location
    Havant/Portsmouth
    Posts
    155
    Thank Post
    0
    Thanked 3 Times in 3 Posts
    Blog Entries
    1
    Rep Power
    16
    We currently have it so that all users can authenticate - followed the wizard to configure the policy rules. Checked the log and the only time we get any errors/events is when the local administrator account tries to authenticate/get an IP Address.

    edited to add: have also tried group specific and machine specific policies but no joy.

    another edit to say that we can login fine on an xp sp2 laptop. so its something to do with sp3 I think. To me its pointing towards security but I'm unable to identify where/what.

  4. #4
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,424
    Thank Post
    10
    Thanked 488 Times in 428 Posts
    Rep Power
    111
    Try starting the NAP, wired and wireless authentication services automatically on a XP SP3 machine. Make sure there are no health policies on the NPS server as SP3 includes the NAP client.

  5. #5
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,424
    Thank Post
    10
    Thanked 488 Times in 428 Posts
    Rep Power
    111
    Oh, also add the wireless network manually. The automatic adding can get the WPA/WPA2 encryption type wrong. If there continue to be no failed entries in the security log then the machines aren't getting as far as NPS, and are stuck authenticating to the wireless box.

  6. #6
    amyr's Avatar
    Join Date
    Jan 2007
    Location
    Havant/Portsmouth
    Posts
    155
    Thank Post
    0
    Thanked 3 Times in 3 Posts
    Blog Entries
    1
    Rep Power
    16
    Have tried all of that and still no joy. Only domain admins can authenticate. So still confused.

  7. #7
    amyr's Avatar
    Join Date
    Jan 2007
    Location
    Havant/Portsmouth
    Posts
    155
    Thank Post
    0
    Thanked 3 Times in 3 Posts
    Blog Entries
    1
    Rep Power
    16
    solved it in the end - laptops required an MS Hotfix (KB969111) and then they worked perfectly!

    THanks for all your help though

  8. #8

    Join Date
    Jul 2010
    Location
    Denmark
    Posts
    1
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Problem with Radius ping utility - Encryption fails

    Here is what I get when I try to ping from ringmaster:

    Ping started...
    Sending authentication request to server uvserver (217.60.64.3:1812)
    Encryption failed - unable to send request
    Ping completed.

    I cannot get passed "Encryption failed - unable to send request" anybody know what I maybe be doing wrong?

    Kind regards - Brian.

SHARE:
+ Post New Thread

Similar Threads

  1. Authenticating Non domain machines on a RADIUS wireless system using IAS.
    By maniac in forum Network and Classroom Management
    Replies: 5
    Last Post: 11th May 2011, 11:46 PM
  2. Replies: 3
    Last Post: 20th May 2010, 02:10 PM
  3. NPS/Radius authentication with wireless clients using 2008 R2
    By ranj in forum Windows Server 2008 R2
    Replies: 7
    Last Post: 26th April 2010, 11:49 AM
  4. Smoothwall SG in non transparent mode not authenticating users
    By ssiruuk2 in forum Internet Related/Filtering/Firewall
    Replies: 8
    Last Post: 23rd October 2009, 03:16 PM
  5. Wireless Config With NPS
    By Richie1972 in forum Windows Server 2008
    Replies: 2
    Last Post: 2nd October 2009, 12:45 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •