I have setup several Cisco's 2911 Wifi AccessPoints, they are setup to use domain server authentication against a Win08R2 DC with NPS roled installed.
I have it set to allow connection if any of the following requirements are met:
1-computer already belongs to the domain
2-valid domain user/pass (allow apple ios devices to connect)
it works great if you are already part of the Domain
but if a computer that doesnt belong tries to connect (a guest, for example), after entering VALID domain credentials, the connection fails, event viewer indicates it cant find a valid vertificate to allow the connection.
so... it wants a certificate to be installed on the computer before it allows the connection EVEN when the user/pass is correct for the domain user.
Ive been manually installing the certificates but i rather it just works by authenticating the username/pass the user enters when attempting the connection to the AP.
how can i get rid of the certificare requirement? (and not have to modify settings on currently connected computers)