FreeRADIUS 3 and Expired AD Passwords for Wireless Auth

Trinklein, Jason R trinkleinj at cofc.edu
Fri Jan 26 18:34:17 CET 2018


We are using FR3 for WPA2 Enterprise authentication to our wireless network.

We have been having issues with various user devices not prompting for new passwords after the old one expires in AD. Instead, the user simply gets a message that they are “unable to connect to network”. This requires the user to remove the network from their device and re-associate. Sometimes in Windows, the user must delete and reinstall the wireless adapter.

I’m unsure if there is something wrong with our FreeRADIUS configuration that is improperly communicating the nature of the authentication failure to the user devices. Does anyone have any suggestions? We are running FreeRADIUS 3 on Ubuntu with winbind (not ntlm_auth) connections to our Active Directory server. It may have nothing to do with our FR3 servers…is anyone else facing similar password expiration challenges?

--
Jason Trinklein
Wireless Engineering Manager
College of Charleston
81 St. Philip Street | Office 311D | Charleston, SC 29403
TrinkleinJ at CofC.edu<mailto:TrinkleinJ at CofC.edu> | (843) 300–8009


More information about the Freeradius-Users mailing list