Im having an issue with a windows laptop connecting to our wifi. Radius server shows the following....
Reason Code: 265 Reason: The certificate chain was issued by an authority that is not trusted
We went ahead and updated that laptop to w10 1909 thinking that may be the issue and then it appeared to connect just fine (no errors in the nps server log) but heres where it gets weird. The machine connects...gets an ip. I can ping it fine and im able to ping out on our lan from that laptop. Its not able to browse the internet at all. I even tried two different browsers.
Im at a loss here...clearly something is going on however other clients appear to be fine.
This means the machine is authenticating to WiFi using a certificate, and that certificate is not trusted by the RADIUS server.
It has nothing to do with DNS servers, AP firmware versions, etc.
If you don't want to do certificate authentication then de-select it on the RADIUS server as a valid authentication option. If you do want to use certificate authentication then fix the certificate on the client machine.
So it looks like the firmware update didnt do anything. In speaking with meraki support it seems to be an internal dns issue. Whats weird is that other devices on that same a/p using the same dns server work fine.