[OT?] Systemwide authentication on Windows
Alan DeKok
aland at deployingradius.com
Wed Aug 11 02:46:24 CEST 2010
Lukas Haase wrote:
> I think I have a simple question: Today I upgraded from WPA-PSK to WPA
> Enterprise and use PEAP-MSCHAPv2 for users (using logins) now and I want
> to use EAP-TLS for machines.
..
> I tried to add the client certificate for EAP-TLS to the computer
> certificate store. But the certificate is only found if it is in the
> user's store :-(
This is really a Windows questions.
> This can't be true?! there must be a way to connect the whole machine
> using a certificate (not just the current user) , mustn't it?
There is a way. Windows usually auto-provisions machine certificates
via Active Directory.
See the Windows documentation for more details.
Alan DeKok.
More information about the Freeradius-Users
mailing list