Meraki

Community

Wifi over Windows NPS radius doesn't work when on cellular

Andrew3
Here to help
Friday
Friday

Wifi over Windows NPS radius doesn't work when on cellular

We have couple MX68CW that has cellular sim cards as backup. And when WAN1 is offline users can't access 801.11x wifi over windows NPS. It doesn't want to connect to wifi no matter that i'll reboot check and so on.

It works when WAN1 is active though...

Any idea why ?

0 Kudos
7 Replies 7
alemabrahao
Kind of a big deal
Friday
Friday

Are you using the WAN or LAN IP to communicate with your NPS?

Have you collected the NPS logs to check what error occurs during authentication?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
alemabrahao
Kind of a big deal
Friday
Friday

Maybe it will help you.

 

https://www.cisco.com/c/en/us/support/docs/switches/meraki-ms320-48/217894-troubleshoot-recent-802-1...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
RaphaelL
Kind of a big deal
Kind of a big deal
Friday
Friday

What firmware are you running on the MX ?

0 Kudos
In response to RaphaelL
Andrew3
Here to help
yesterday
yesterday

18.211.4 on all locations. 

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
yesterday
yesterday

I assume your are acessing your RADIUS server over AutoVPN?

 

Does AutoVPN come up over your cellular?  You might need to use a different APN.

Try doing a ping over AutoVPN over cellular and see if it is woring.

 

If ping does work, you might have an MTU issue, especially if you use certificate-based authentication. You can try configuring the Framed-MTU attribute on your RADIUS server for lower and lower values (1400, 1300, etc.) until it starts working (or use "ping -f" to figure it out properly).

0 Kudos
In response to PhilipDAth
Andrew3
Here to help
yesterday
yesterday

Ping was always working. Access to autovpn is fine. Just when i want to use radius on laptop it's trying to connect and then it fails. 

i can't use different apn. i've got specific apn from ISP to have static IP 

Andrew3_0-1744009256048.pngAndrew3_1-1744009277189.png


And none of computer in that location can connecto to WPA2-Enterprise 

0 Kudos
In response to Andrew3
PhilipDAth
Kind of a big deal
Kind of a big deal
2 hours ago
2 hours ago

What does the RADIUS server say?  If you are using NPS, filter the security event log on event IDs 6272 and 6273.

0 Kudos
li.common.scroll-to.top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.