Auto-Enrollment Group Policy
Posted on 2016-10-20
We currently are undergoing a big wireless expansion for our Care Center onsite. To have dual authentication we have a machine certificate and a user certificate assigned. Having just the machine cert alone drops you in a limited VLAN while having both the User and the Machine cert drops you in a full access VLAN. The machine certificate processing is working as it should, however the user certificate is delayed and is only getting applied about 45-60 seconds after the user has logged in.
The problem I have is that I need it to apply during the initial login like my printers, mapped drives, etc. work. I have already moved it up Link Group Policy Objects list and have it enforced, but it still gets applied too late. I need it to be applied before their initial desktop comes up.
Any way to make this work?