Where do you see "The client could not be authenticated because the Extensible Authentication Protocol (EAP) Type cannot be processed by the server."?
Do you see anything (further) in the Eventlog or NPS logs?
What is the authentication method you try to use? The screenshot is truncated at the PEAP inner methods and only lists MSCHAPv1 in the visible part.
Please note that PEAP-MSCHAPv2 is deprecated because of know weaknesses in the underlying MSCHAPv2 Better to use EAP-TLS.
Troubleshooting NPS can be a challenge, as the logging is not always as accessible and clear.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Sep 07, 2021 10:54 AM
From: Richard Spaulding
Subject: Radius Authentication terminating on Windows Server NPS
Anyone have any ideas? I'm really stumped on this one.
------------------------------
Richard Spaulding
Original Message:
Sent: Sep 03, 2021 06:09 PM
From: Richard Spaulding
Subject: Radius Authentication terminating on Windows Server NPS
I'm not sure I understand what you're saying, here. Isn't that what 1.3.6.1.5.5.7.3.1 is?
ETA: I realize that I didn't show you the Enhanced Key Usage fields:

------------------------------
Richard Spaulding
Original Message:
Sent: Sep 03, 2021 05:58 PM
From: Colin Joseph
Subject: Radius Authentication terminating on Windows Server NPS
You specifically need a server certificate.
------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
Original Message:
Sent: Sep 03, 2021 02:03 PM
From: Richard Spaulding
Subject: Radius Authentication terminating on Windows Server NPS
I'm trying to get radius authentication working on a Windows NPS with termination on the server, but I'm have the following error "The client could not be authenticated because the Extensible Authentication Protocol (EAP) Type cannot be processed by the server."
This is my Connection Request Policy:

This is my Network Policy:

This is the certificate for my NPS server:

It is correctly bound to the EAP policy.
802.1x Authentication is set up on the controller and works fine when terminated on the controller. My NPS rules work fine. The only issue is that if I turn off termination on the controller I get the error above.
Any suggestions you could offer would be appreciated.