Hi,
I've a question concerning the certificate requirements for NPS.
We are in a mixed environment, using XP and W7 clients. Both clients use PEAP-EAP-TLS for wireless authentication (computer certificates).
I know the NPS server (RADIUS) cannot handle certificates generated with the new Cryptographic API from a 2008 CA, however what about the client (computer) certificates.
The plan is that our clients, XP and W7 will both get certificates signed with a SHA512 hash, the NPS server certificate is based upon the 2003 (v2) template and uses a SHA1 hash.
Would they be able to authenticate to the NPS server using PEAP-EAP-TLS. Has anyone tested this configuration?
Regards, Armand