AD CS

InSearchOf
InSearchOf used Ask the Experts™
on
Hello EE. I have been trying to configure AD CS so I can use it along with Radius and NPS for wireless access with a Cisco wireless Lan Controller. You guys have provided links for How to procedures which is great but I can never get the same results and I am wondering if it is my version of windows. I am running windows 2008 standard in a domain environment running AD. When I select Cerificate enrollment from the console after( having added the snapins) I do not see a selection for "Active Directory Enrollment Policy". When I look at the certificate templates I do not see the Domain Controller Authentication template. If I go to manage I see it there as well as the wireless one I created. I have tried the procedures from scratch repeatedly with the same results. Is it my version of windows that does not have all the functionality required for the procedures I am following.I have asked this question a few different ways here. I appreciate any direction I can get.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Commented:
Does this Technet article help you answer the question? http://technet.microsoft.com/en-us/library/cc772393(WS.10).aspx or this one: http://technet.microsoft.com/en-us/library/cc755071.aspx.

Apologies if these answers have been suggested in replies to your previous postings on this subject.

In summary, there is certainly reduced functionality when AD CS is run on a WS08 standard edition server but whether it applies to your problem is not clear.
Senior Active Directory Engineer
Top Expert 2012
Commented:
To be able to do that you need Enterprise CA not Standalone. When you create appropriate template then you have to confiure a GPO for autoenrollment.

But for that you need Server 2008 Enterprise Edition
http://technet.microsoft.com/en-us/library/cc772393%28WS.10%29.aspx

Regards,
Krzysztof
InSearchOfIT Director

Author

Commented:
Well, since I only have 2008 standard edition what can I use to install a Cisco Wireless controller to integrate with my 2008 active directory domain?
Bootstrap 4: Exploring New Features

Learn how to use and navigate the new features included in Bootstrap 4, the most popular HTML, CSS, and JavaScript framework for developing responsive, mobile-first websites.

Commented:
Using the WLC, NPS/Raidus you can still integrate the controller into your active directory (so users can use their domain username and password for seamless sign on)

Certificates will only increase the security of your network and how it validates clients. They are recommended, but not needed in order to allow network access. You just want to disable "Validate server certificates" on the clients machines. This can also be managed through group policy.
InSearchOfIT Director

Author

Commented:
Does that mean I do not need AD CS or should I configure as standalone?

Commented:
You do not need a AD CS
InSearchOfIT Director

Author

Commented:
Thanks for the useful info. Much appreciated

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial