Everything Instant On

I'm setting up a radius-based setup with our 5 AP-11's, which need to talk to our Windows Server 2016 which is our domain controller and where radius runs. For some reason, I have no luck authenticating in the right way.

I have wireshark running on the Windows Server, and I can see the Access-Requests coming in, but the answer is always an Access-Reject type packet.

I have added all access points as RADIUS client:

Furthermore I have created a Network Policy with a group membership as condition, and the user I am trying it with is member of that group.

And I have also created a Connection Request Policy which does the authentication requests on the local server, and with Authentication Method EAP-MSCHAP v2 (but also tried with Protected EAP).

Anyone with a clue?

@Sander  Please reach out to support to see if they can assist you.

https://www.arubainstanton.com/contact-support/

@Sander,

Have you looked at the document on this site explaining how to set up Microsoft NPS with Instant On APs?

https://community.arubainstanton.com/t5/Instant-On-Guides/Aruba-Instant-On-Microsoft-NPS-Integration/ta-p/1854

Let us know what the problem was once you make it work.