I have many Ubiquiti Unifi APs connected to a Windows Server 2012 NPS radius server.
I configured security policies to let domain users connect to the local network.
I'm having some trouble with Windows 7 clients. I get a message Impossible to connect
.
In C:\Windows\System32\LogFiles
, I see the Access-Request
packet and a 11
packet that seems to be Access-Challenge
. I did not see any event log entry about a rejected connection.
I tried to manually configure the wireless connection with this tutorial but had no luck:
With non-windows devices (like mobiles, tablets, mac computers) the radius connection works perfectly!
How can I get the Windows 7 clients to work as well?
Best Answer
I just did this exact thing, but I used Windows Server 2008R2 as the RADIUS server.
The guide that you linked to looks good, actually, it just needs to match your settings on the NPS/RADIUS server. By default Windows 7 computers will try to authenticate with the computer's domain password when they first power on, and then with the user name/password once you have logged in. By default, Windows 7 will also try to verify that the certificate presented by the RADIUS server is trusted. The guide you linked to shows you how to force the Windows 7 client to authenticate with the user information only. You should make sure this matches your actual NPS policy.
Here is what I did for my Unifi install:
By the way you listed a very minimal error message, but if you look in the Windows Security event log, you should be able to get much more detailed information about where the RADIUS authentication is failing.
The most likely error sources will be:
The Unifi AP just passes on the RADIUS authentication, by the way: that won't be part of the equation at all. Just look at the RADIUS server and the client device.