Hi - nice to meet you all.

Staight in at the deep end Im afraid: I have just completed building a wireless network on our Windows 2003 network and Im having no luck in connecting to it.The spec is as per the Microsoft Solutions for Security Build Guide for Wireless LANs - A Windows Server 2003 Certificate Services Solution :

I initially built a certificate services setup to push out certificates to machines and users using group policy. This seems to be working as I can clearly see the installed certificates in the correct place on the client laptops.

I then implemented 802.1X by building a RADIUS server and accociated all my Cisco 1200 APs with IAS.

I also created a additional GPO to push out the correct wireless settings to the client laptops - which i have also checked and is working correctly.

Everything worked for a couple of days but now when I try to connect - the clients time out with an "aquiring network address" error. I have gone over things time and time again but I cant seem to find any reason for this. The only other error message I can see is on the Cisco AP that I am using for testing which keeps displaying a "Station <mac address> Authentication failed" message.

Please please please can someone help me out? Im starting to lose sleep over this one. :confused:

Cheers

Chris

OK - I have rebuilt my RADIUS box and Now when I try to log a client on I get the following Error massage:

Because the certificate that was configured for clients dialing in with EAP-TLS was not found, a default certificate is being sent to user cpajersey\cbrown4$. Please go to the user's Remote Access Policy and configure the Extensible Authentication Protocol (EAP).

This is then followed by:

User host/cbrown4.cpajersey.com was denied access.
Fully-Qualified-User-Name = CPAJERSEY\CBROWN4$
NAS-IP-Address = 10.200.XX.XXX
NAS-Identifier = SPAP6
Called-Station-Identifier = 0013.1a40.7ac0
Calling-Station-Identifier = 0004.237f.14ef
Client-Friendly-Name = SPAP6
Client-IP-Address = 10.200.XX.XXX
NAS-Port-Type = Wireless - IEEE 802.11
NAS-Port = 344
Proxy-Policy-Name = Use Windows authentication for all users
Authentication-Provider = Windows
Authentication-Server = <undetermined>
Policy-Name = Allow Wireless Access
Authentication-Type = EAP
EAP-Type = Smart Card or other certificate
Reason-Code = 16
Reason = Authentication was not successful because an unknown user name or incorrect password was used.

:) Got it sorted. Rebuilt RADIUS Server and re-created remote IAS policy.

Going to get some well deserved sleep now