mpi wrote: > Any way to do this working without change security settings on all > roaming clients? You need to add the root CA to all Windows clients. This is how PEAP works. Alan DeKok.