Solved

Is there a way for XP laptops to connect to a RADIUS server without a certificate?

Posted on 2011-02-12
10
425 Views
Last Modified: 2012-05-11
At work we have multiple locations each with their own separate network. I would like users to be able to connect to the wireless network using their e-mail address and password. I have a test access point setup pointed to a FreeRADIUS server I installed and my linux laptop and Android phone can connect to it fine but Windows XP doesn't prompt for a username or password and keeps throwing up a dialog saying it can't find a certificate. If I check the server, it says XP is sending an empty username and password.
Is there some kind of protocol I can switch to on the server(or something) that would let XP connect without:
A) a certificate
B) configuration changes on the laptop
0
Comment
Question by:jasonzx
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 3
10 Comments
 
LVL 8

Expert Comment

by:Toxacon
ID: 34881774
You are propably using EAP-TLS, which requires a certificate. You need to modify the client settings if the only method is EAP at the client. You can always try by disabling EAP method from the RADIUS server and enabling other. Do not use PAP on wireless, because passwords are sent in cleartext.
0
 

Author Comment

by:jasonzx
ID: 34882275
Ok, do you know what method works under xp and doesn't require a cert?
0
 
LVL 8

Expert Comment

by:Toxacon
ID: 34882308
If your RADIUS supports MS-CHAP v2 then you can use it for PEAP.
0
Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

 

Author Comment

by:jasonzx
ID: 34888032
Testing it now but the server keeps returning noop when hitting the mschap module.
0
 
LVL 8

Expert Comment

by:Toxacon
ID: 34888410
Can you install Microsoft IAS (NPS if Win2008 or R2) instead of the FreeRADIUS?
0
 

Author Comment

by:jasonzx
ID: 34892379
Tried it under Win2003, had the same issue. Tried to generate a server-side certificate to see if that would fix things but had some problems.
Installed Win2008, had the same issue but didn't get a chance to generate a cert before the day ended. Will try it tomorrow morning and see what happens.
0
 

Author Comment

by:jasonzx
ID: 34897243
Tried it under Win2008, followed a MS walkthrough(http://www.microsoft.com/downloads/en/details.aspx?familyid=0f7fa9a2-e113-415b-b2a9-b6a3d64c48f5&displaylang=en)
I had to made some adjustments since it was written for 2003 but I still get the same problem. Tells me certificate not found despite which protocol I select.
Tried it on another computer running WinXP SP3 and got the exact same thing.
0
 

Author Comment

by:jasonzx
ID: 34899401
Tried again. Win2008 server and found another walk-through for Win2008 server and still getting the same thing.
I can't find any way to get XP to connect to a RADIUS server without somehow modifying XP.
0
 

Accepted Solution

by:
jasonzx earned 0 total points
ID: 35300145
After much digging, it looks like there is no way around this from the server-side.
0
 

Author Closing Comment

by:jasonzx
ID: 35331368
What sought a solution for was not possible.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
server crashed 2 83
Wifi addin for wireshark? 5 66
Exchange Certification Training 5 62
192.168... network can't ping 18 36
Need WiFi? Often, there are perfectly good networks that don't have WiFi capability - and there's a need to add it.  - Perhaps you have an Ethernet port into a network but no WiFi nearby. - Perhaps you have a powerline extender and no WiFi at the…
Why pager replacement is still an issue OnPage has what some might call a “hate/hate” relationship with pagers. Not much room for love. As we see it, pagers are an antiquated bit of technology. Pagers are dinosaurs which, like most dinosaurs, sho…
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question