Hi all.
I hope I can get some assistance with this issue so let me try explain.
HQ has a bunch of 105s with Enterprise authentication and all the devices setup on the RADIUS server (the Domain Controller here) and all works as you would expect. Laptops auto sign into the WiFi with the logged in user ID and PW when taken off the wired LAN.
We have some remote sites with 205s where the users and laptops are on HQ's domain so they all work as expected also.
The issue is:
I recently setup three 205s in one of the remote sites whih is on a trusted domain and not the same domain as HQ. I set these APs up as clients on the Domain Controller here in HQ.
If a user with a laptop from the HQ domain goes to the remote site, they can connect and authenticate onto the Enterprise wifi with no issue.
However users on laptops on the remote site's Domain cannot login to the wifi either in the remote site or when they come onsite in HQ.
They get the baloon in the bottom right informing them of this and they get a errors in the local System Event Viewer.
The source of these erros is 'Schannel' and they are:
Event ID 36888: The following fatal alert was generated: 48. The internal error state is 552.
Event ID 36882: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The SSL connection request has failed. The attached data contains the server certificate.
So I am hoping someone can point me in the right direction here. What needs to be setup differently to allow the other domain's laptops to connect to the wifi network?
All help appreciated as I am under pressure in work to get these Arubas working down in that remote site.