InSearchOf
asked on
Non domain computers can't connect to wireless network using radius
I set up a 2008 R2 NPS server with EAP-tls authentication which works fine for computers with computer accounts in AD. I have a cert template published in AD with my CA cert. If I log in to a non domain laptop I get prompted for username/password which I would expect but when I enter my credentials it doesn't work. What am I missing?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
OK. Thanks for the info. Much appreciated.
ASKER
Is it possible to renew a certificate over the wireless network or do you have to be connected to the LAN? also when does the certificate actually renew?
Once connected you can renew a certificate over a wireless connection.
What you cannot do is connect to the wireless once your certificate has expired.
Yes, you can have certificates automatically renew. This is handled through the autoenrollment policy.
More info at https://technet.microsoft.com/en-us/library/cc731522(v=ws.11).aspx
What you cannot do is connect to the wireless once your certificate has expired.
Yes, you can have certificates automatically renew. This is handled through the autoenrollment policy.
More info at https://technet.microsoft.com/en-us/library/cc731522(v=ws.11).aspx
ASKER
Craig-
How would I go about adding PEAP-MSCHAPv2 to my existing policy?
When you say create a new policy for PEAP instead do you mean using PEAP instead of TLS?