I am attempting to connect to a Wireless network (802.1g) using RADIUS.
Server: Windows 2008 R2 SP1 running NPS.
Client: non domain member running Windows 7 SP1
Access point is a Linksys WRT54G
---
Client side diagnostics show, in summary, that...
Pre-association - success
Association - success
Security and authentication - failure
---
Event Viewer - Security log - on the server side displays a number of Event 6273 failure entries (padlock icon).
"Network Policy Server denied access to a user"
Authentication type is EAP
*
NOTE: There is no EAP-TLS, no PEAP, since computers in question are non-domain members and could not efficiently obtain client side certificates and would not, by default, trust the server's certificate for PEAP.
NOTE: We do have a Policy for domain members (PCs) that use machine authentication with certificates. That has been disabled for troubleshooting at this time.
Reason Code: 66
Reason: The user attempted to use an authentication method that is not enabled on the matching network policy.
---
What methods are checked?
- MS-CHAP-v2
- MS-CHAP
-CHAP
Yes, there are a couple other network policies, but I have given top priority to the policy being discussed here and even went to the extent of disabling the others.
I have tried with two different users, one being an admin.
---
Authentication attempt is manual on client side: find proper SSID and attempt to connect. User is prompted for Active Directory credentials - with results explained above.
How can I resolve this problem?
Thanks in advance!
Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.