I'm trying to config a NPS server with WLC, to authenticate on WLAN with AD users.
The WLC has various interfaces,
The NPS Server as an IP add: 10.10.11.99.
If in the NPS server, the radius client IP is configured as the as the management IP of the WLC (10.10.10.10) I received the message:
A RADIUS message was received from the invalid RADIUS client IP address 10.10.11.99
If in the NPS server the radius client IP is configured as the as the LAN IP interface (10.10.11.10) I do not received any error message, but the client doesn't authenticate.
Is there any way to force the WLC when contacting to NPS to use the management IP and not the LAN IP interface.
I follow the example from cisco where the the Network policies are:
NAS Port-Type: Wireless
Authentication Type: EAP or PEAP
but my NPS server isn't a 2003 srv, but a 2012 R2 srv.
Can anybody help what am I doing wrong?