Hello,
We've been using NPS (2x NPS servers with Aruba IAPs) with machine authentication for a while now without any issue. We've just received a new batch of devices (laptops, tablets) and after deployment, we realized they do not want to connect to our secure network. Everything on the clients seems fine, they have a computer certificate, are domain-joined and get the policies from GPO. At first, I thought it was an issue with those new devices, but after wiping my own (old batch) PC to test, it doesn't work either. So I thought it might've been something with our OS deployment, but today I wiped another old computer and this one works with our secure wireless network. This working computer has the exact same drivers as my personal computer (which doesn't work). It seems to me "Machine authentication" is not working with those devices as I get a prompt for username/password. I am at a complete loss as to what causes this and need to fix it before the lockdown is lifted or else things are not looking good.
On the NPS server logs, nothing seems out of place. When a computer authenticates, it shows the computer account object as a "user". When I try to use a computer that doesn't work, it just prompts me for user/password and that fails as we use machine auth. I don't know why it's not forcing trying machine auth. The NPS server certificate is valid. Certificate stores for a working vs non-working machines are identical.
No comments:
Post a Comment