a few VISTA machines won't do machine authentication to WPA enterprise network
I have a wireless (802.11g) network using WPA/TKIP/PEAP/MS-CHAPv2, with hundreds of laptops in a domain. The XP machines all work fine. You turn them on, they authenticate to the wireless network using the machine accounts, the user provides his/her domain login and password, the machine reauthenticates using the user's credentials. You can read the security event log on the server that runs IAS and see it happening. I have 10 identical machines running Vista, all completely up to date on service packs and patches. 8 of these machines work fine, just like the XP machines. The other two will not connect to the wireless network prior to user log in. These are shared machines, they need to be able to do this, or the only way a user who's never used that machine before can log in is to plug it into a wired ethernet port somewhere, log in, and then the wireless will start working fine, using the user's credentials. I've used network monitor to trace what's happening on the wireless network, or not happening, and examined the IAS server event log, and both point to the same conclusion, that not one packet comes out of the malfunctioning machines prior to a user logging in. The event log on one of the machines in question (haven't looked at the other yet) displays the following entry: A request was made to authenticate to a wireless network. Subject: Security ID: host/bu6-2786.students.bu6.org Account Name: - Account Domain: - Logon ID: 0x0 Network Information: Name (SSID): BUHS#6 Interface GUID: {312d98df-fb20-4ac8-a23e-c07fdf1001e6} Local MAC Address: 00:24:2C:46:07:5A Peer MAC Address: 00:1D:7E:9A:D6:00 Additional Information: Reason Code: Explicit Eap failure received (0x50005) Error Code: 0x8007054f This message mystifies me, because I can't see a single packet going into or out of the machine using network monitor. And why would 8 of the machines work fine, and 2 fail. what's the difference? Other details: the IAS server runs windows 2003, also up to date on patches. The access point I'm using for testing is a linksys WAP200, though I also have quite a few WRT54Gs set up to act as access points, not routers, and the same thing happens in those parts of the building. how do I fix this?
March 23rd, 2010 8:58pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics