Automating "Wired" 802.1x settings for Windows XP SP3 installs

So, after reading up on 802.1x authentication, it is my understanding that in order to push XPSP3 out to around 2000 machines, we will need to touch each and every machine to change the AuthMode to Machine.  Does this basically sound correct?  What was MS thinkimng?  Due to various issues, the machines in question will have variations on the "Local Area Connection" name for the LAN connection and thus scripting may not be an option.  Is there an MS programmatic solution available or are we looking at the fun task of touching each and every machine in all 40+ WAN's out there?  And thus the key word is AUTOMATE, not the MS KB article stating that this is how you do it...
GeekyDeeAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

HVHSTechCommented:
why dont you just use a GPO to change the settings?

http://blogs.techrepublic.com.com/networking/?p=1093
0
merowingerCommented:
Agree: With this group policy settings you can define you WLN Acccess Point and with WMI Filters on the policies you can define which client shell get which access point profile
0
GeekyDeeAuthor Commented:
ummm, maybe because the tilte says "Automating "Wired" 802.1x settings for Windows XP SP3 Installs"?  hehe, I do that a lot too  :P  I truly wish there was a GPO setting for the wired 802.1x options and you all were right, but so far I have yet to find an automated solution.  I really do not want to touch all 2000 pc's.  you sound fairly knowledgeable, does the netsh lan options let you import a generic setting into the current xml file, or would that necessitatetoo much work?  All it needs is the
<AuthMode>machine<AuthMode>
part inserted in the EAPOL section of the xml file and if you do not specify the local area connection, it does them all.  Just not sure where it would put the inserted xml snippet...

Forgive the loopiness, I have been doing too much today and I swear management wants to suck my brains out...

Geekydee
0
ON-DEMAND: 10 Easy Ways to Lose a Password

Learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees in this on-demand webinar. We cover the importance of multi-factor authentication and how these solutions can better protect your business!

WolfhereCommented:
Note:  There is currently no support for Group Policy-based configuration of wired client 802.1X authentication settings. The Wireless Network (IEEE 802.11) Policies Group Policy settings are for wireless network connections only. (http://www.microsoft.com/downloads/en/confirmation.aspx?familyId=05951071-6b20-4cef-9939-47c397ffd3dd&displayLang=en)

I can see your frustration Geekydee. You can set maxpasswordage in the registry, reverse encryption in GPO and configure a remote access policy. But, ultimately you will have to touch them all. Its not as bad as converting 19,000 machines from one version of Novell to the next (as I have done). think about it, 2,000 is not as bad as 19,000 ..LOL.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
GeekyDeeAuthor Commented:
finally got it working with a batch file in the runonce key in the registry and 2 reboots, so it is now fully automated. Thanks for help though

ps  I hate hospitals, erg...
0
GeekyDeeAuthor Commented:
helped to lead to a solution
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.