Solved

Auto-Enrollment Group Policy

Posted on 2016-10-20
2
47 Views
Last Modified: 2016-10-25
We currently are undergoing a big wireless expansion for our Care Center onsite. To have dual authentication we have a machine certificate and a user certificate assigned. Having just the machine cert alone drops you in a limited VLAN while having both the User and the Machine cert drops you in a full access VLAN. The machine certificate processing is working as it should, however the user certificate is delayed and is only getting applied about 45-60 seconds after the user has logged in.
The problem I have is that I need it to apply during the initial login like my printers, mapped drives, etc. work. I have already moved it up Link Group Policy Objects list and have it enforced, but it still gets applied too late. I need it to be applied before their initial desktop comes up.

Any way to make this work?
0
Comment
Question by:Joe Lowe
2 Comments
 
LVL 16

Accepted Solution

by:
Michael Ortega (Internetwerx, Inc.) earned 250 total points
ID: 41853204
I don't believe there is any method to speed up that process. It's an inherit delay.

MO
0
 
LVL 79

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 250 total points
ID: 41853208
If the user logs out then logs in then they will have the certificate and should have full access
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question