NPS certificate present but RADIUS auth still fails on Wi-Fi

MSP Toolkit
Minimal guidance for messy support realities.
Submitted by Anonymous (not verified) on

Scenario

Wireless or VPN auth fails even though the NPS server has a valid certificate installed.

Recommended Resolution Path

  1. Confirm NPS is bound to the intended certificate and that the EKU/SAN are appropriate.
  2. Check client trust of the issuing CA and any recent renewal differences.
  3. Compare one successful auth path against the failing one for EAP method mismatch.
  4. If the cert changed recently, verify policy references and trust prompts carefully.

Technician Notes

Capture the exact scope of impact, confirm which dependency failed first, and document whether the issue reflects broader domain or server drift.

Subjects
Servers & Infrastructure
Certificate Services