Fri Sep 02, 2016 1:14 am
After configuring Windows 2012 NPS, FreeRADIUS AND Windows 2008 NPS, all giving the same results, it leads me to wonder if there is a problem that has been introduced into the RouterOS at some point. I found a post where it mentions that in 6.24 or 6.25 RADIUS works, but in 6.28 it does not. Also numerous posts about 6.25 and Win2k8 NPS working. I am specifically running RouterOS 6.36, not 6.36.2. Radius servers are FreeRadius 4.x, Windows 2008 with NPS, and windows 2012 with NPS. The Windows server logs show the server is sending back a reason-code 0, which, according to everything I have found is the same as the FreeRadius Authenticate = ok. The FreeRadius server is sending back an Authenticate = ok. From what I understand that means the Radius server has accepted the message, and everything is agreeable. However, the MikroTik basically ignores that message and resends the request until it completely times out.
Can anyone confirm this, either through more knowledge of the Radius process than me, or by actually configuring a Win 2k8 or 2012 server and trying it? I know the servers are configured correctly, because they allow our Cisco Meraki units to authenticate wifi users.
Basically, what we are trying to accomplish to allow our wifi users to connect automatically via their domain login credentials. I have spent nearly 1 month working on this, and have not as yet found a solution. PLEASE someone point out where I am wrong in this process, and I will gladly publicly acknowledge my mistake and their knowledge!
Thank you!