Solved

Windows 2003 Radius Wireless - Non Domain Member Laptop

Posted on 2006-06-11
6
547 Views
Last Modified: 2010-05-18
Hello everyone, my situation is I have laptop that cannot be a member of the domain yet I need it to be able to authenticate with the Radius server. Should I use EAP-TLS or PEAP-MS-CHAP v2? I have the radius and certificate server set up and ready to go. I figured I could use web enrollment for the User certificate but then I got stuck on how to get a machine certificate. Any help would be greatly appreciated Thanks.  
0
Comment
Question by:amas3333
  • 3
  • 3
6 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 16882337
Your laptop does not have to be a member of the domain, so you can specify your domain credentials when you connect to the wireless
http://www.hansenonline.net/Networking/wlanradius.html
0
 

Author Comment

by:amas3333
ID: 16897491
What about if i wanted to use EAP-TLS?
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 16897647
Does not matter. You can specify your username/domain/password for the connection
0
New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

 

Author Comment

by:amas3333
ID: 16900370
How do i supply alternate credentials using Win Xp?
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 16901386
Make sure you have XP/SP2 and you let Windows handle your wireless connections - not any connection manager that came with the network card.

When you add the wireless network, Authentication tab
EAP type: Protected EAP (PEAP)
Un-check []Authenticate as computer when computer information is available
Un-check []Authenticate as guest when user computer information is unavailable
Click Properties  | Select Authentication Method: Secure Password (EAP-MSCHAPv2)
Check [x] Enable Fast Reconnect
 Configure... button
 EAP MACHAPv2 Properties - Un-check [] Automatically use my Windows logon name and password
[OK]

OK your way out and when you connect to the wireless network, you should get another prompt to supply alternate credentials. Click the balloon and you will be presented with a dialog for
Username:
Domain:
Password:

You only have to put it in once and you're good to go until your domain password expires and you'll see the balloon again.
0
 

Author Comment

by:amas3333
ID: 16909277
Thank You
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

Article by: IanTh
Hi Guys After a whole weekend getting wake on lan over the internet working, I thought I would share the experience. Your firewall has to have a port forward for port 9 udp to your local broadcast x.x.x.255 but if that doesnt work, do it to a …
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now