802.1X with custom RADIUS "use my Windows user account"

Fakrul
Here to help

802.1X with custom RADIUS "use my Windows user account"

Hi,

 

I have configured Meraki AP with Radius (Active Directory) authentication and all looks ok. Users can see and join the SSID by typing their AD username and password. But when they try with "use my Windows user account" option they can't connect. They option populate the details but can't connect.

 

I have enabled syslog and following is the successful authentication:

 

 

Feb 25 14:15:44 10.244.214.22 1551064544.109238217 Sydney_Wireless events type=association radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' client_ip='10.244.214.159' channel='140' rssi='29' identity='DOMAIN\F.Falam' aid='89159985'
Feb 25 14:17:49 10.244.214.22 1551064669.604770865 Sydney_Wireless events type=8021x_eap_failure radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' client_ip='10.244.214.159' identity='DOMAIN\F.Falam' aid='3147780'
Feb 25 14:17:49 10.244.214.22 1551064669.605551871 Sydney_Wireless events type=8021x_deauth radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' client_ip='10.244.214.159' identity='DOMAIN\F.Falam' aid='3147780'
Feb 25 14:17:49 10.244.214.22 1551064669.608800857 Sydney_Wireless events type=disassociation radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' channel='140' reason='1' instigator='2' duration='1.979381442' auth_neg_failed='1' is_8021x='1' identity='DOMAIN\F.Falam' aid='3147780'

 

 

But when I try with Windows login option, unsuccessful authentication:

 

 

Feb 25 14:15:30 10.244.214.22 1551064530.601959240 Sydney_Wireless events type=8021x_eap_failure radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' client_ip='10.244.214.159' identity='DOMAIN\F.Falam' aid='2147337438'
Feb 25 14:15:30 10.244.214.22 1551064530.602552804 Sydney_Wireless events type=8021x_deauth radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' client_ip='10.244.214.159' identity='DOMAIN\F.Falam' aid='2147337438'
Feb 25 14:15:30 10.244.214.22 1551064530.614267893 Sydney_Wireless events type=disassociation radio='1' vap='0' client_mac='D4:6D:6D:61:65:2A' channel='140' duration='1.969384566' auth_neg_failed='1' is_8021x='1' identity='DOMAIN\F.Falam' aid='2147337438'

 

 

 

3 Replies 3
PhilipDAth
Kind of a big deal
Kind of a big deal

You need to check the RADIUS server to see why it is refusing the connection.

Fakrul
Here to help

Hi Philip,

 

Thanks. Got the issue. We have used self signed certificate and it's giving error. Just set it as trusted certificate.

 

Regards.

Fakrul.

student
Comes here often

Hi   Fakrul

 

I have the same issue when we use the Windows login option checkbox it unable to connect BUT when we try to type the username and password manually  it work correctly so how can we fix it by trusted certificate please  

thanks 

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels