Apple Event: May 7th at 7 am PT

Learn more

Add to your calendar 

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: vane0326
vane0326 Author
User level: Level 1
11 points

Windows 10 WPA2 Enterprise OS X Server will NOT connect!

Hi,


I recently bought an Airport Extreme and a Mac Mini. I installed OS X server and configured radius using WPA2-Enterprise. My iPhone and family iPhone's are able to make a establish connection, and my My MacBook is able to make a connection as well. BUT my Surface Pro 2 (Windows 10) CANNOT.


The Surface prompts me to enter my credentials (Username & Password). I used the User Account credentials that I created in the OS X Server and then it ask me to "Enter Network Security Key". I have no idea what that is. I searched online and I found this...


http://answers.microsoft.com/en-us/windows/forum/windows_10-networking/after-upd ate-to-1511-i-cant-connect-via-wlan-to-my/696f12ed-6e08-4e14-ae30-c7a878ebbd17?a uth=1


"Could your WLAN network be using FreeRadius2 to handle WLAN authentication? There is a known issue in FreeRadius 2 version 2.2.6+ preventing it from authenticating a client using TLS 1.2.


A possible solution is to try disabling use of TLS 1.2 of the Windows 10 client:

  • Create DWORD HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\PPP\EAP\13\TlsVersio n and set the associate DWORD value to C0.
  • Restart service EapHost service."

I modified the registry on the Windows 10 and it did NOT work.

My question is has anyone ever successfully connect their Windows 10 computer/laptop/boot Camp using OS X Server WPA2 Enterprise? If yes, What is the configuration?

Please Help!

Surface Pro 2-OTHER, Windows 10

Posted on Feb 11, 2016 6:39 AM

Reply
4 replies
User profile for user: To_Mi
To_Mi
User level: Level 4
1,202 points

Feb 11, 2016 8:02 AM in response to vane0326

I'm not using Windows or radius, but got some related info that may help you.


* FreeRadius / TLS

Which version of OS X server are you using?

As I checked on my OS X Server (latest, 5.0.15), it uses FreeRadius 2.2.0.

So, it doesn't have the issue on TLS 1.2. It just doesn't support it.


* Certificate

Where is the certificate issued from?

Windows 10 may not accept it as valid one If you're using self-signed certificate.

# Sorry, I could not find good site showing the solution for the case.

Reply
User profile for user: vane0326
vane0326 Author
User level: Level 1
11 points

Feb 11, 2016 8:13 AM in response to To_Mi

Hi,


I'm not at home right now, but I installed the latest version of OS X Server from the App store on to my Mac Mini.


And yes it's using a self-signed certificate from the OS X Server.


Thank you for the information.


If anyone has a Windows 10 or maybe a Windows 8.1 try connecting to your OS X server WPA2 Enterprise and see if will work.

Reply
User profile for user: vane0326
vane0326 Author
User level: Level 1
11 points

Feb 11, 2016 7:47 PM in response to vane0326

I was able to figure it out. Hope this helps someone.


This will work for Windows 7 & Windows 10.


On my Windows 10 Surface Pro 2 I went back to the registry and restored everything what I've done.


First you have to create "Manually connect to a wireless network"


1.) Network Name "Your SSID Name"

2.) Security Type: "WPA2-Enterprise"


Leave Check "Start this connection automatically"


Connection Tab

Leave Check "Connect automatically when this network is in range"

Leave Check "Connect even if the network is not broadcasting its name (SSID)"


Security Tab

Security Type: "WPA2-Enterprise"

Encryption type: "AES"


Choose a network authentication method:

Microsoft: Protected EAP (PEAP)

Leave Check "Remember my credentials for this connection each time I'm logged in"


Click on Settings Box.


Uncheck "Verify the server's identity by validating the certificate"


Select Authentication Method:

Secure password (EAP-MSCHAP v2)


Click the Configure Box

Uncheck "Automatically use my Windows logon name and password (and domain if any).


Click the Advance settings Box

In the 802.1X settings Tab


Check Specify authentication mode:

Choose "User authentication"


Here is what I was missing


Go to the 802.11 settings Tab


Uncheck "Enable Pairwise Master Key (PMK) caching"

Reply

Windows 10 WPA2 Enterprise OS X Server will NOT connect!

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up