[Help] How to eliminate client certificate popup

Danny Kurniawan danny.kurniawan at fairchildsemi.com
Tue Mar 5 10:56:31 CET 2013

Hi All,

Thanks for all your reply. Yes i do understand the solution is to deploy
the network profile, but just curious at first who knows any of you have an
idea how to eliminate it wthout touching the client.

*for example push the profile automatically from the AP etc...

But now i guess i will have to deploy netsh command using script to all PC
as its not joining AD :)


On Tue, Mar 5, 2013 at 5:28 PM, Phil Mayers <p.mayers at imperial.ac.uk> wrote:

> On 03/05/2013 01:58 AM, Danny Kurniawan wrote:
>> Hello,
>> We are using 802.1x wireless connection from Meraki and using
>> PEAP-MSCHAPv2 for authentication with our LDAP. Everything works fine,
>> it just we want to eliminate this pop-up at the 1st time people connect
>> to it :
>> How can i do that? We are using a cert from Global sign and we already
> You have only a few choices:
>  1. Use a program such as su1x, ExpressConnect or similar to pre-provision
> the CA trust settings
>  2. If the machines are domain members, use group policy to do the same
>  3. Deploy a batch file / whatever to use "netsh" and XML profiles to do
> the same - a poor mans version of #1
>  4. Live with it.
> This is not a RADIUS question; it's an issue of supplicant provisioning,
> which is best asked of your OS vendor.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/**
> list/users.html <http://www.freeradius.org/list/users.html>

Best Regards,
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130305/954f5ac4/attachment-0001.html>

More information about the Freeradius-Users mailing list