Solved

IAS for WLAN authentication with certificate

Posted on 2010-08-15
3
1,000 Views
Last Modified: 2012-05-10
Hello,

I am installing IAS on a Windows 2003 SP2 domain controller to authenticate wireless users connecting via a Ruckus wireless Zone Defender.We will be using PEAP MS-CHAP v2.  I was told to set up the system for testing purposes and after it is working, we will buy a server certificate. When I look at the documentation, it appears that the server cert is necessary to get the system working. Am I wrong and if so, how can IAS be made to work without the cert?

Thanks
0
Comment
Question by:srfergus
  • 2
3 Comments
 
LVL 5

Accepted Solution

by:
TechnicallyMaybe earned 500 total points
ID: 33440833
You do need a cert, but you can used a self-signed cert for testing purposes.  Use SelfSSL to generate.
http://www.somacon.com/p42.php
When/If you go live, you can buy a trusted cert from Go Daddy or Verisign.
0
 

Author Comment

by:srfergus
ID: 33441068
Thanks! One other question: when I'm using SelfSSL to generate the cert, should I use the port switch (/P:port) to switch from the default (443)? If so, should I change it to 1812 or 1645 (the RADIUS ports) or can SelfSSL generate one cert for both ports?
0
 
LVL 5

Expert Comment

by:TechnicallyMaybe
ID: 33441232
The port switch automatically adds it to port 443 but the cert can be put on any port. SelfSSL was designed to create a cert and add it to IIS automatically but you can use it for anything needing a certificate.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Organizations create, modify, and maintain huge amounts of data to help their businesses earn money and generally function.  Typically every network user within an organization has a bit of disk space to store in process items and personal files.   …
I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question