- Community Home
- >
- Networking
- >
- Wireless
- >
- M and MSM Series
- >
- Re: MSM710 + Active Directory
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 05:37 AM
тАО05-05-2010 05:37 AM
MSM710 + Active Directory
I am now trying to setup my MSM710 using WPA2-enterprise and having issues with users authenticating against AD.I am using an XP workstation with WPA2-enterprise PEAP MS-CHAP-V2 and every time I try to connect it comes back with Authorization failed due to invalid credentials. I have tried two different user accounts and was able to get these to work with AD and HTML logon but not with WPA2-enterprise.
The Device is joined to the domain.
I have added the groups in AD that the user belongs to.
I have made sure the user does have the AD attribute.
I saw from other issues like this on this forum that I should run the System tools AD/Radius debug and have attached the file. I have attached the file and am hoping someone will be able to make some sense of it for me.
I would greatly appreciate any help on this one.
Thanks
SFM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 06:31 AM
тАО05-05-2010 06:31 AM
Re: MSM710 + Active Directory
We have some users who fail to authenticate if set to automatically pass their credentials, but they conect just fine if they manually type their credentials in on connection...
No answers as to why but the behavior is fairly well established here. We know it is correctly identifying the user, as it locks their account for bad logon attempts. Are you seeing this as well?
Hope that helps, if only a bit.
Steve
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 06:38 AM
тАО05-05-2010 06:38 AM
Re: MSM710 + Active Directory
It is not locking the accounts out. It is telling me that it is invalid credentials but doesn't seem like it is trying or the account would be locked out.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 07:27 AM
тАО05-05-2010 07:27 AM
Re: MSM710 + Active Directory
Does our vsc look like the "stock image" attached?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 07:59 AM
тАО05-05-2010 07:59 AM
Re: MSM710 + Active Directory
I looked through my DC's event logs and see no failed audits? I tried connecting again and watching the audit trail and don't see anything.
I looked at the two workstations and don't see any failed audits as well.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 08:13 AM
тАО05-05-2010 08:13 AM
Re: MSM710 + Active Directory
Only thing different is I am using WPA2 but I have tried it both ways and still the same results.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 09:50 AM
тАО05-05-2010 09:50 AM
Re: MSM710 + Active Directory
Apparently best practice is to use domain local groups per documentation forwarded me by support personnel at HP...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 10:59 AM
тАО05-05-2010 10:59 AM
Re: MSM710 + Active Directory
I did get one user connected and then when I tried to reconnect I got the same issues.
I tried rejoining the controller to the domain but this didn't fix the issue either.
I just tried creating a domain local group and adding the users in that I want to get connected with no luck.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-05-2010 09:27 PM
тАО05-05-2010 09:27 PM
Re: MSM710 + Active Directory
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-06-2010 04:10 AM
тАО05-06-2010 04:10 AM
Re: MSM710 + Active Directory
On the group, after you create it in AD and add it to the controller, you have to join AD again before it will recognize the group....
Good luck!
Steve