NPS Authenticating with Computer Certificate

Dennis Waigi 21 Reputation points
2020-08-28T09:51:28.11+00:00

I have issued domain machines with workstations certificates.
I'm trying to setup up NAP 802.11x Wireless, where domain machines use their certificate to connect to a WPA-2 Enterprise protected SSID.

Can't seem to find out why i am getting the following error:

SubjectUserSid S-1-5-21-91531361-2206647928-486991081-7589
SubjectUserName host/ITL_DENNIS.MRM_ARV.MRM.DOM
SubjectDomainName MRM_ARV
FullyQualifiedSubjectUserName MRM_ARV.MRM.DOM/MRM ARV-LAPTOP/ITL_DENNIS
SubjectMachineSID S-1-0-0
SubjectMachineName -
FullyQualifiedSubjectMachineName -
MachineInventory -
CalledStationID 9A-8A-20-E3-04-E7:MRM TEST
CallingStationID 08-71-90-93-12-C8
NASIPv4Address 192.168.3.104
NASIPv6Address -
NASIdentifier 9a8a20e304e7
NASPortType Wireless - IEEE 802.11
NASPort -
ClientName MRM WORK
ClientIPAddress 192.168.3.104
ProxyPolicyName MRM-BS Secure Wireless Connections
NetworkPolicyName MRM-BS Secure Wireless Connections
AuthenticationProvider Windows
AuthenticationServer ARV_PDC.MRM_ARV.MRM.DOM
AuthenticationType EAP
EAPType -
AccountSessionIdentifier 37443431354639354346343339423644
ReasonCode 22
Reason The client could not be authenticated because the Extensible Authentication Protocol (EAP) Type cannot be processed by the server.
LoggingResult Accounting information was not written to any data store.

(Empty EAP Type)

Below is NPS Setup screenshots:
21127-image.png
21241-image.png

Please assist.

Windows Server Infrastructure
Windows Server Infrastructure
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Infrastructure: A Microsoft solution area focused on providing organizations with a cloud solution that supports their real-world needs and meets evolving regulatory requirements.
553 questions
0 comments No comments
{count} votes

Accepted answer
  1. Sunny Qi 11,051 Reputation points Microsoft Vendor
    2020-08-31T07:42:09.213+00:00

    Hi,

    Thanks for posting in Q&A platform.

    Regarding of your issue, I found some similar threads for your reference. Please kindly check if the following links were helpful:

    https://community.cisco.com/t5/wireless-security-and-network/eap-tls-authentication-failure/td-p/1601905/page/2

    http://www.pwrusr.com/system-administration/solvedmicrosoft-network-policy-server-nps-error-code-22

    https://getsatisfaction.com/aerohive/topics/nps-the-client-could-not-be-authenticated-because-the-extensible-authentication-protocol-eap-type-cannot-be-processed-by-the-server
    Please Note: Since the websites are not hosted by Microsoft, the links may change without notice. Microsoft does not guarantee the accuracy of this information.

    Hope my answer will help you!

    ---Please Accept as answer if the reply is helpful---

    Best Regards,
    Sunny


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.