Certificate Services for Wireless Radius

Posted on 2012-03-30
Medium Priority
Last Modified: 2012-08-30
I'm setting up a Wireless CISCO AP and would like to setup a Radius server on my Windows 2008 server. Questions:
1. Is there a way to setup a Radius server without running a CA services on the AD?
2. If not - will implementing of the CA services on my domain change or disrupt my non-wireless desktops/laptops/RAS users?

Environment: Windows 2008 DC, Windows desktops/laptops, Windows RAS VPN, Cisco WAP4410, CISCO ASA

Question by:olegsl
  • 2

Expert Comment

ID: 37788748
Hi Oleg,

You might create a self-signed certificate for this purpose used the selfssl tool provided with the IIS toolkit. Have a look at this document as is provides a step by step procedure. It's for Windows server 2003 / IAS but you'll probably get it.


Good luck


Author Comment

ID: 37788977
Thanks Steven. I'll check it out now. But how about the second part of my q:
 -  will implementing of the CA services on my domain change or disrupt my non-wireless desktops/laptops/RAS users?


Accepted Solution

RikeR earned 900 total points
ID: 37789001
Hi Oleg,

Afaik You should able to install cert service without interuption. However my suggestion wll prevent you from installing cert serv.


Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits …
Native ability to set a user account password via AD GPO was removed because the passwords can be easily decrypted by any authenticated user in the domain. Microsoft recommends LAPS as a replacement and I have written an article that does something …
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

587 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question