Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1564
Views
0
Helpful
4
Replies

Failed connection Windows 7 clients with WLC2504+NPS 2012

Stanislav Lukiyanchenko
Level 1
Level 1

‎11-21-2014 02:56 AM - edited ‎07-05-2021 01:59 AM

Hello

I have some interesting experience. I configured my wireless controller 2504 with a Windows 2012 Server as radius server for authenticating the active directory's users. So, I have one Windows 2012 R2 server configured as a Domain Controller and installed and configure NPS , and  CA server configured in another Windows 2008 R2 Server. Also I have  one clients PC's with Windows 8.1 and several Windows 7 connected to My Domain, also iPad and Android devices out  of Domain of course.

I used this sources when configuring it.

http://www.cisco.com/c/en/us/support/docs/wireless/5700-series-wireless-lan-controllers/117684-configure-WLAN-00.pdf

http://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/115988-nps-wlc-config-000.pdf

   

The problem is, that all Windows 7 clients do not connect to my SSID with Auth 802.1.x + PEAP , but other clients connect successfully and automatically without problems. 

I tried a lot of action, for example , from this source http://www.networkworld.com/article/2160056/security/tips-for-troubleshooting-802-1x-connections.html

But I have no success to resolve it. I ensured that W7 PC using the correct CertAutority. But,  anyway I reinstalled this Cert.

I have no idea anymore. Please help.

Some logs in attachments.  

Labels:
Preview file
30 KB
Preview file
17 KB
Preview file
20 KB
Preview file
24 KB
0 Helpful
4 Replies 4

Sebastian Helmer
Level 5
Level 5

‎11-21-2014 05:11 AM

Sorry, I didn't run through all your links and attachements, but just one question.

 

On the CLient profile, did you check the checkbox for the Certificate u want to use? try that.

also in the advance section did u check and choose User/Computer Authentication.

 

Br,
Sebastian

 

pls. rate if helpful

0 Helpful

Stanislav Lukiyanchenko
Level 1
Level 1
In response to Sebastian Helmer

‎11-24-2014 01:26 AM

Thank you for your reply, Sebastian

Yes, I checked my certificates, and I tried to install manually a certificate of NPS server. Also tried to uncheck the Validate server certificate option. The result was the same - no connect, only logs in controller slightly was changed.  

Also in advanced section I chosen and User Authentication and User/Computer Authentication. The same result.

I want to notice, that I configured one else radius server - the Cisco ACS 4.2. This server is not connected with Active Directory. And another ssid is fastened with this radius by EAP. The Windows 7 client connect to this ssid with the following options:

  • Unchecked the Validate server certificate
  • Unchecked Use Windows logon
  • In Advanced Section, check and choose User Authentication, and save the local ACS username and password.

 

Now, I want to install a radius on Windows 2003 Server, this server connected to Domain. Let's see how this works out.

0 Helpful

nz.sysadmin
Level 1
Level 1
In response to Stanislav Lukiyanchenko

‎04-24-2015 07:52 PM

Having the same issue. You ever find a solution to this?

0 Helpful

Kasun Bandara
VIP
VIP
In response to Sebastian Helmer

‎01-05-2017 04:39 AM

Hi guys,

Any luck on this matter??

Thanks

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card