Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
Original Message:
Sent: Oct 06, 2023 03:15 PM
From: gmann101
Subject: Radius Authentication Using MS NPS Server
Yes, I looked at my existing Network policies, and found that this new policy had the lowest processing order, and was being overridden by two other policies that were denying access using the EAP, MS-CHAP v1, MS-CHAP v2, SPAP and PAP authentication methods.
I have moved the new policy higher in terms of processing order, yet the problem still persists.
I have also followed the guide which you have referenced, but I am not sure whether if I should be applying the same attributes as the ones listed in the document, or keep the values which I had entered.
Original Message:
Sent: Oct 06, 2023 05:44 AM
From: cjoseph
Subject: Radius Authentication Using MS NPS Server
You have something configured that I cannot see. It is somehow hitting the "connections to other access servers" network policy. Please start with this older post as a template: https://community.arubanetworks.com/community-home/digestviewer/viewthread?MID=6586
------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
HPE Design and Deploy Guides: https://community.arubanetworks.com/support/migrated-knowledge-base?attachments=&communitykey=dcc83c62-1a3a-4dd8-94dc-92968ea6fff1&pageindex=0&pagesize=12&search=&sort=most_recent&viewtype=card
Original Message:
Sent: Oct 05, 2023 06:34 PM
From: gmann101
Subject: Radius Authentication Using MS NPS Server
Hi Cjoseph. I have enabled the option that you had suggested, but the problem still persists. I looked at the NPS event logs on the Windows Server, and show the following message when attempting to SSH in:
Original Message:
Sent: Sep 30, 2023 06:21 PM
From: cjoseph
Subject: Radius Authentication Using MS NPS Server
In your 4th screenshot, try to enable "unencrypted authentication Pap/Spap". To troubleshoot what is wrong, look at the eventviewer under NPS to see if it is even handling your messages.
------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
HPE Design and Deploy Guides: https://community.arubanetworks.com/support/migrated-knowledge-base?attachments=&communitykey=dcc83c62-1a3a-4dd8-94dc-92968ea6fff1&pageindex=0&pagesize=12&search=&sort=most_recent&viewtype=card
Original Message:
Sent: Sep 29, 2023 04:10 PM
From: gmann101
Subject: Radius Authentication Using MS NPS Server
Hello all. I am wanting to configure my 2930M switches using Radius authentication with a Windows NPS Server. I have applied the following configuration to the switch:
radius-server host x.x.x.x key <<insert-key>>
radius-server dead-time 5
radius-server timeout 10
aaa authentication login privilege-mode
aaa authentication ssh login radius local
aaa authentication ssh enable radius local
On the Windows Server, under the Network Policy Server module, I have applied the following:
- Added one switch as a radius client
- Under the Network Policies Section, I have created a new policy with the following settings & attributes: