Hello,
I am trying to put WPA-Enterprise security on my wireless network. In my environment, all the wireless users are Domain users and their will be no Mobile Phones. Now at first I started with PEAP Authentication and that worked for me. I was using Server 2008 Root CA, NPS as radius server and different clients including Windows 7, XP, 2003, 2008
When I enabled PEAP authentication, clients used to ask domain username and password, once the username and password are entered, all different clients were getting connected with my WPA-Enterprise wireless enabled.
Then I use certificate-based-authentication that is EAP-TLS, So When I changed my Network Policies in NPS to accept EAP-TLS by selecting "Smart card or other certificate" option for authentication and respective changes on clientside. My wireless is no longer working with the new settings.
I found that EAP-TLS requires user certificate on the client side to authenticate user and a computer certificate on the NPS server. NPS server already have the computer certificate and then I issued a user certificate and imported to the client under "Trusted Root Authority" it didnt work either.
I have imported the certificate to client but still showing error "A certificate is required to connect to SSID, contact your network administrator"
Can anybody tell me a simple way to authenticate wireless clients using certificates. I am ready to import the certificates to the clients manually.
