Hi Robert,
Thanks for getting back.
Will do a little more debugging. Initially changing TLS.1.0 in the reg of the Win10 seemed to initially correct the issue. The solution uses Extreme Cloud Wireless and primary RADIUS source of NAC and Secondary is their own NPS server.
Changed the auth order to see if would work with NPS, but made no difference. Changed back and couldn't replicate the fix, so at this time I have a little more work to do.
I have run a packet trace on NAC at the point of connecting to wireless using cert based auth, and I couldn't see any requests at all showing up!?
I need to validate those findings, as it seems odd, probably try it again when next onsite. Was going to try cert based auth on wired and see if I get same results and take some more packet captures. Need to nail where in the chain the problem lies.
Will report back any findings, and raise a GTAC case if i get stuck.
Thanks