none
wireless wih eap authentication with server 2003 ias and cert authority

    Question

  • Dear all,

    Facing a strange and weird problem.Everything was working since yest and today morning users are not able to connect to the wifi.AP is cisco aironet with Eap authenticatoin requiring certificate [user and computer ]  and authenticated via radius server windows server 2003.

    radius and cert authority is a windows server 2003 dc.  nothing was changed and stopped working all of sudden.now users cant authenticate event viewer giving.

    IAS EVENT ID 2 

    Policy-Name = Wireless access
     Authentication-Type = EAP
     EAP-Type = Smart Card or other certificate
     Reason-Code = 262
     Reason = The supplied message is incomplete.  The signature was not verified. 

    Tried installing valid root certificate and tried almost averything.ca root certificate was renewed two years back.

    on the wireless adapter advanced properties if i say dont validate server certificate it connects so i guess the problem is that the ca server is giving the client the old expired ca root certificate but i dont know why certainly this started.

    if anybody have any solutions please let me know

    thanks for the help

    thanks


    Sunday, April 07, 2013 1:59 PM

Answers

  • 

    i was able to solve this incase anybody run through  a same problem and hits this page for them i will describe the issue and solution here.

    first check the root ca certificate is valid and not expired and check its is present in the computer as well as user trusted certificae authority stores in the user pc as well as on the ias server.

    check the user and computer certificates for authentication are proper and valid.

    check the ias server access policy authentication settings and check there are no expired certificates which was issued to the ias server before if its there remove it from the ias server cert store.

    this works .

    thanks

    • Marked as answer by maddy1234 Monday, April 08, 2013 9:54 AM
    Monday, April 08, 2013 9:54 AM

All replies

  • Might ask them over here.

    http://social.technet.microsoft.com/Forums/en-US/winserversecurity/threads

     

     

     


    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows]

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

    Sunday, April 07, 2013 2:31 PM
  • 

    i was able to solve this incase anybody run through  a same problem and hits this page for them i will describe the issue and solution here.

    first check the root ca certificate is valid and not expired and check its is present in the computer as well as user trusted certificae authority stores in the user pc as well as on the ias server.

    check the user and computer certificates for authentication are proper and valid.

    check the ias server access policy authentication settings and check there are no expired certificates which was issued to the ias server before if its there remove it from the ias server cert store.

    this works .

    thanks

    • Marked as answer by maddy1234 Monday, April 08, 2013 9:54 AM
    Monday, April 08, 2013 9:54 AM