This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Client are rejected on NAC with the reason "rejected by radius mschap"

Client are rejected on NAC with the reason "rejected by radius mschap"

Yogakrisnanda
New Contributor

‎02-12-2019 04:15 AM

Hi everyone,

I have some project to deploy Extreme NAC server and the client is authenticated via LDAP Blind using account proxy (no use administrator). I have configured AAA config on NAC for Ldap and tested users (via wired) on Nac successfully. And then, tested user (via wireless) on EWC it seems error state description "Rejected by radius mschap". I have tested both oh windows 8 and windows 10 PC's. Is this error caused by using a proxy (not use administrator) account on LDAP?
0 Kudos
2 REPLIES 2

Zdeněk_Pala
Extreme Employee

‎02-12-2019 07:42 AM

I guess the client configuration is different for wired and for wireless. Please check the 802.1X setting on the supplicant.

There should be no difference between "Supplicant -> Switch -> Access Control Engine" and "Supplicant -> Controller -> Access Control Engine".

As suggested by Roland, check the radius setting on the controller. Check your AAA rules in ExtremeControl also.
Regards Zdeněk Pala
0 Kudos

Ronald_Dvorak
Honored Contributor

‎02-12-2019 07:19 AM

If it works via wired I'd say that the settings NAC to LDAP are fine.

What's the RADIUS protocol setting on the EWC, PAP/CHAP ?


22d9f48086694ac78771b7e1b7bc94cc_36aee500-394a-4546-a975-576246f8ffb5.png

0 Kudos
li.common.scroll-to.top
GTM-P2G8KFN