I recently had a self signed certificate expire that I am using for Wireless clients using PEAP. I renewed the certificate and it shows in the clients certificate store but they receive this error while trying to connect:
The server presented a valid certificate issued by "MY CA" but CA is not configured as a valid trust anchor for this profile.
I show the correct certificate under the PEAP config on the Radius server and it is also listed in Active Directory's NTAUTH store when I view the AD container in Enterprise PKI. Any ideas what would be causing this?