Wireless Access

last person joined: yesterday 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Aruba mobility 7030 + NPS + 802.1x authentication

This thread has been viewed 1 times

  • 1.  Aruba mobility 7030 + NPS + 802.1x authentication

    Posted Sep 08, 2017 08:29 AM

    Hi,

    I have problem with authenticating wireless users over 802.1x with AD See below my setup:

    Mobility contrioller:

    -PEF licence installed

    -AP provisioned and working fine

    -I have one SSID configured as machine authentication (set to enforce machine authentication) - this one works perfect

    - the second SSID is using AD authentication (created OU on AD and configured few test users) - and this one does not work.

    As you can see in the last screenshot.

    I've unticked dial-in tab restarted NPS service few times and no joy.

    If anyone had experience with similar setup before which would help me to resolve this problem ?

     

     



  • 2.  RE: Aruba mobility 7030 + NPS + 802.1x authentication

    EMPLOYEE
    Posted Sep 08, 2017 09:11 AM

    Your clients are hitting the "connections to other access server" policy.  That means that whatever NPS policy you have configured is too restrictive, so it is not being processed.



  • 3.  RE: Aruba mobility 7030 + NPS + 802.1x authentication

    Posted Sep 08, 2017 09:34 AM

    HI Colin,

    do you mean my "SGS-Users$" string in NPS conditions tab or "domain users" ?

    Would you clarify what you mean ?

     

    regards

    Piotr



  • 4.  RE: Aruba mobility 7030 + NPS + 802.1x authentication

    EMPLOYEE
    Posted Sep 08, 2017 10:34 AM

    It is not hitting your "Domain Users" policy.

     

    Why do you have the calling station ID requirement setup in your policy?  Please remove that if it is not needed.