Showing results for 
Search instead for 
Did you mean: 

windows 8/10 non-domain can login radius windows 2016 except Certificate

My lab test NPS windows 2016 and Certificate with Cisco 2504 Firmware configuration Radius everything work.
but Client non-domain windows 8/10 and some mobile can login my SSID(802.1x) without Certificate.

Please advise about this case Thank you.

4 Replies 4

Scott Fella
Hall of Fame Guru Hall of Fame Guru
Hall of Fame Guru
That is because you are probably allowing PEAP protocol in NPS. In order to authenticate using a computer certificate, you need to specify EAP-TLS. You can search “Radius NPS EAP-TLS” and find various links on what you need to do.
*** Please rate helpful posts ***

Do you mean EAP Type PEAP to Remove ?

Yes... should only be EAP-TLS
*** Please rate helpful posts ***

Here is a guide I found:
*** Please rate helpful posts ***
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers