Solved

CA 2003 to NPS 2008

Posted on 2013-05-22
4
304 Views
Last Modified: 2013-05-24
I have a 2003 CA server setup as a Root CA server in my domain.  I have added a 2008 R2 Enterprise server to the domain as a Enterprise Subordinate CA and added NPS to it.  I am trying to get my new Aerohive APs to authenticate through radius using the 2008 server, but i keep getting a certificate chain not trusted.  I see the certificate in the trusted root certificates on the clients, but they keep saying it is untrusted.  Any thoughts?
0
Comment
Question by:drewbrowning88
  • 2
4 Comments
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39191587
Do you have an Enterprise Root CA on the network already?
0
 

Author Comment

by:drewbrowning88
ID: 39191762
Yes i do and it is the 2003 server
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39191802
Ok do the clients have a personal certificate installed?
0
 
LVL 25

Accepted Solution

by:
Ken Boone earned 500 total points
ID: 39192309
So what is the reason for making the NPS server a subordinate CA server?  It seems like you are complicating things here.  If you don't have a need for it, just use your Enterprise CA and don't worry about setting up a subordinate CA.  The NPS will need to request its cert from the CA.

Follow this walk through and see if that helps.

http://blog.instruosolutions.com/2012/10/10/configuring-microsoft-nps-server-2008-for-wireless-client-authentication-ms-peap/
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Windows Server Folder Access Control 6 43
Cannot see all of hard drive on HP Server 7 65
User Being Logged Out of AD 6 64
Join with a SQL Server STUFF 5 32
I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question