I have a Windows Server 2012r2 with DHCP/DNS/NPS (NAP is not enabled) and Aerohive wifi gear
DHCP is a /21 on the network with usually about 70% of IPs used.
SSID with PSK. IP is provided by Windows Server
SSID with 802.1x Radius NPS. IP is provided by Windows Server
We have about 600 users on wifi daily. Every week or so, we have about 5-10 users that stop by and cannot get on the SSID with Radius auth. They authenticate correctly because I see the Network Policy and Access Services log in event viewer. But, they never receive an IP from the server. I packet captured a couple of clients and they were sending out a DHCP Discover request, but it doesn't seem to get answered.
This happens with Mac clients and PC clients. It does not seem to happen with iOS or Android devices.
When I take that same client and go on the SSID with PSK, it immediately gets an IP address. Then, I click back to the SSID with Radius and it works perfectly, obviously using the same IP it got when it was on the SSID with PSK.
I looked at the DHCP C:\Windows\system32\dhcp audit log files and the client that keeps trying to get an IP after it authenticates with the SSID with 802.1x, does not seem to be there. However, once I switch to the SSID with PSK, that client appears in the DHCP log.
I am unsure of what log to look at and what issue this can be.Thanks for your help