Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Tuesday, November 21, 2017 8:44 PM
Looking for assistance in resolving EAP MSCHAPv2 authentication issue(s). I'm logged into the local Admin account. The three check boxes under the Authentication tab, i.e. "Enable IEEE...", " Remember..." and "Fallback" are all checked. The "Additional Settings" allows me to check which 802.1X Authentication Mode I want to use. When going to "Settings" under PEAP, "Verify the server's identity..." is checked; however, when I click "Configure" next to (Secure Password <EAP-MSCHAPv2>) the option to check "Automatically use my Windows logon name and password (and domain if any)" is grayed out.
All replies (4)
Wednesday, November 22, 2017 2:38 AM
Hi,
Untick Remember my credentials for this connection each time I’m logged on option in Authentication tab to check result.
If still no help, look at this similar case.
"Use windows logon user name and password" option greyed out when using MS-CHAP-V2???
Please note this paragraph:
I had assumed the issue might be tied to GINA. I actually found what was causing the break and due to security policies for this account opted against making the change, instead we cached his login to the client.
Check if there is any security policies for your current user account applied on your computer.
Please Note: Since the website is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
Regards
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Tuesday, November 28, 2017 8:40 AM
We have not heard from you in a couple of days. Please post back at your convenience if we can assist further.
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Friday, August 31, 2018 2:45 PM | 1 vote
Hi Guys,
If anyone needs this. This was because Credential Guard was configured this is why the option was greyed out.
See this statement;
Credential Guard also does not allow unconstrained Kerberos delegation, NTLMv1, MS-CHAPv2, Digest, CredSSP, and Kerberos DES encryption.
Thanks
Wednesday, December 12, 2018 2:49 PM
Interestingly, if your management workstation has Credential Guard enabled you also won't be able to set this option as enabled when creating a wireless group policy in the Group Policy Management Console. This really makes no sense to me.
Gary Knigge