Network Policy Server error message 'Negotiation failed. No available EAP methods'

windows-server-2012 wifi radius
10,237

Solution 1

one of these things that you do once a year and forget. Since this is top result I'll leave this here;

So issue for me is that I'm using a self signed server cert to auth meraki 802.1x, PEAP refuses to do any auth with expired cert (and empty subject in actual cert)

it expires once a year and needs renewing (from iis is by far quickest). once new one is in place everything is starting to auth as expected again

Solution 2

Putting this out there in case it helps anyone else who is struggling with this same error message as I was. In my case the underlying issue was that my Windows server had been configured so that TLS version 1.0 and 1.1 were disabled, only TLS 1.2 is allowed. However NPS was still defaulting to TLS version 1.0.

In my case this had been configured via GPO by our server admins.

I was able to manually set NPS to use TLS 1.2 in the registry, following these instructions:

https://support.microsoft.com/en-us/help/2977292/microsoft-security-advisory-update-for-microsoft-eap-implementation-th

https://community.spiceworks.com/topic/2195158-enable-tls1-2-in-windows-server-nps

You'll be able to see whether or not this is the problem you're having in a packet capture--look at the Client Hello and Server Hello packets and compare the TLS versions each one is trying to use.

Share:
10,237

Related videos on Youtube

user6888062
Author by

user6888062

Updated on September 18, 2022

Comments

  • user6888062
    user6888062 almost 2 years

    I am trying to change our wireless access points to use RADIUS. I have installed Network Policy Server on a server and pointed our wireless access points RADIUS settings to it.

    I have allowed all Domain Users in the policy.

    However when a client attempts to connect to the wireless network using the 'Use my Windows account' option (I have also tested manually entering DOMAIN\user etc. with the same results) the client shows the error message

    Unable to connect to this network

    I have checked the Event Viewer on the server where Network Policy server is installed and this error message is generated each time a client tries to connect

    Negotiation failed. No available EAP methods

    Here is a screenshot of the properties of the policy.

    enter image description here

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Failed Authentication Against Windows Server 2012 R2 RADIUS Using PAP
EAP-PWD with FreeRADIUS 3
WIFi Authentication with Windows Active Directory
WPA2 Enterprise - Validating Identity
Deploying Windows via SCCM 2012 OSD Wireless
802.1x automatically validate certificate in windows clients
Beginners questions on how RADIUS and WiFi authentication works
Why would you use EAP-TTLS instead of PEAP?
Radius connection with Windows 7 computers
Flutter how to check if WIFI is turned on (connected or not it doesn't matter)?