Solved

CA 2003 to NPS 2008

Posted on 2013-05-22
4
306 Views
Last Modified: 2013-05-24
I have a 2003 CA server setup as a Root CA server in my domain.  I have added a 2008 R2 Enterprise server to the domain as a Enterprise Subordinate CA and added NPS to it.  I am trying to get my new Aerohive APs to authenticate through radius using the 2008 server, but i keep getting a certificate chain not trusted.  I see the certificate in the trusted root certificates on the clients, but they keep saying it is untrusted.  Any thoughts?
0
Comment
Question by:drewbrowning88
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39191587
Do you have an Enterprise Root CA on the network already?
0
 

Author Comment

by:drewbrowning88
ID: 39191762
Yes i do and it is the 2003 server
0
 
LVL 46

Expert Comment

by:Craig Beck
ID: 39191802
Ok do the clients have a personal certificate installed?
0
 
LVL 25

Accepted Solution

by:
Ken Boone earned 500 total points
ID: 39192309
So what is the reason for making the NPS server a subordinate CA server?  It seems like you are complicating things here.  If you don't have a need for it, just use your Enterprise CA and don't worry about setting up a subordinate CA.  The NPS will need to request its cert from the CA.

Follow this walk through and see if that helps.

http://blog.instruosolutions.com/2012/10/10/configuring-microsoft-nps-server-2008-for-wireless-client-authentication-ms-peap/
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OfficeMate Freezes on login or does not load after login credentials are input.
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question