Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Auto-Enrollment Group Policy

Posted on 2016-10-20
2
Medium Priority
?
82 Views
Last Modified: 2016-10-25
We currently are undergoing a big wireless expansion for our Care Center onsite. To have dual authentication we have a machine certificate and a user certificate assigned. Having just the machine cert alone drops you in a limited VLAN while having both the User and the Machine cert drops you in a full access VLAN. The machine certificate processing is working as it should, however the user certificate is delayed and is only getting applied about 45-60 seconds after the user has logged in.
The problem I have is that I need it to apply during the initial login like my printers, mapped drives, etc. work. I have already moved it up Link Group Policy Objects list and have it enforced, but it still gets applied too late. I need it to be applied before their initial desktop comes up.

Any way to make this work?
0
Comment
Question by:Joe Lowe
2 Comments
 
LVL 16

Accepted Solution

by:
Michael Ortega earned 1000 total points
ID: 41853204
I don't believe there is any method to speed up that process. It's an inherit delay.

MO
0
 
LVL 84

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 1000 total points
ID: 41853208
If the user logs out then logs in then they will have the certificate and should have full access
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

824 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question