Controllerless Networks

last person joined: 2 days ago 

Instant Mode - the controllerless Wi-Fi solution that's easy to set up, is loaded with security and smarts, and won't break your budget
Back to discussions
Expand all | Collapse all

IAP Portal 802.1x issues%0D%0A

This thread has been viewed 0 times

  • 1.  IAP Portal 802.1x issues%0D%0A

    Posted Aug 26, 2016 03:35 PM

    Im using IAP on the latest code. I setup my ssid to use radius for 802.1x auth. On Radius, I have EAP with a self signed cert. On a windows client, I create the wireless network, turn off "validate Cert" until I get a 3rd party one, and connect using WPA2 Enterpise. I get connected fine. Then I convert the SSID to guest, create a authenticated captive portal, point auth to radius and login keeps failing with the below error. What am I missing? 

     

    Contact the Network Policy Server administrator for more information.

     

    User:

                    Security ID:                                          redbull\RSmith

                    Account Name:                                   rsmith

                    Account Domain:                                               redbull

                   

    Client Machine:

                    Security ID:                                          NULL SID

                    Account Name:                                   -

                    Fully Qualified Account Name:        -

                    OS-Version:                                          -

                    Called Station Identifier:                   aca31ec7b99c

                    Calling Station Identifier:                  c4b301bb0dc1

     

    NAS:

                    NAS IPv4 Address:                              192.168.174.250

                    NAS IPv6 Address:                              -

                    NAS Identifier:                                     -

                    NAS Port-Type:                                    Wireless - IEEE 802.11

                    NAS Port:                                              0

     

    RADIUS Client:

                    Client Friendly Name:                        Aruba

                    Client IP Address:                                                192.168.174.250

     

    Authentication Details:

                    Connection Request Policy Name: NAP 802.1X (Wireless)

                    Network Policy Name:                      Aruba

                    Authentication Provider:                  Windows

                    Authentication Server:                      SDDC02.off.redbull.edu

                    Authentication Type:                         PAP

                    EAP Type:                                             -

                    Account Session Identifier:                               -

                    Logging Results:                                  Accounting information was written to the local log file.

                    Reason Code:                                       66

                    Reason:                                                 The user attempted to use an authentication method that is not enabled on the matching network policy.

     

     



  • 2.  RE: IAP Portal 802.1x issues%0D%0A

    Posted Aug 26, 2016 03:57 PM
    You need to enable PAP authentication in NPS/IAS policy for that to work

    Get Outlook for iOS


  • 3.  RE: IAP Portal 802.1x issues%0D%0A

    Posted Aug 26, 2016 05:52 PM

    I did enable it. Under authentication in the network policy on NPS. The check box under MSChap section. I also enabled EAP and EAP settings.. 

    Also, why is it using PAP. I want EAP only. Could EAP not be working becouse its doesn’t have a trusted Cert so PAP is being used instead?



  • 4.  RE: IAP Portal 802.1x issues%0D%0A

    EMPLOYEE
    Posted Aug 26, 2016 06:26 PM

    Pap is the only thing that works with Captive Portal.