Re: IAS EAP (PEAP)
- From: "Michael" <mcooper@xxxxxxxxxx>
- Date: Tue, 03 May 2005 13:35:28 GMT
Thanks for the input,
Well I thought I did it that way, I will attach my Install process check it
over for me see if I did it right. I followed it to the letter maybe it's
not the proper procedure I am not sure I am new to all this. The attached
document is what I used to do this.
Thanks again
--
Michael A Cooper
BCCISP.net
http://www.bccisp.net
281-854-2079
"Technology that counts, voices that matter!"
"James McIllece [MS]" <jamesmci@xxxxxxxxxxxxxxxxxxxx> wrote in message
news:Xns964A8E4F46EA0jamesmcionlinemicros@xxxxxxxxxxxxxxxx
> "Michael" <mcooper@xxxxxxxxxx> wrote in
> news:v8sce.32276$h6.2928@xxxxxxxxxxxxxxxxxxxx:
>
>> Hey Guys,
>>
>> I created a cert for my domain to authorize users to use
>> wireless
>> on my network. I created the certs and now when I goto Remote Access
>> Policy in IAS to configure the EAP (PEAP) It tells me that it can't
>> find the cert. Anyone got any IDeas why this might be happening? My
>> IAS is registered with AD so I am okay there.
>>
>>
>> Thanks
>
> If you create the server cert using the information below, the cert will
> meet the minimum cert requirements.
>
> Configure server certificates
>
> Use this procedure to configure IAS server certificates for use with PEAP
> and EAP.
>
> With PEAP-MS-CHAP v2, PEAP-TLS, and EAP-TLS, servers display a list of all
> installed certificates in the computer's certificate store, with the
> following exceptions:
>
> -- Certificates that do not contain the Server Authentication purpose in
> EKU extensions are not displayed.
> -- Certificates that do not contain a Subject name are not displayed.
> -- Servers do not display registry-based and smart card-logon
> certificates.
>
> If you are running an enterprise certification authority (CA) on a
> computer
> running Windows Server 2003, Standard Edition, you can use the Computer
> certificate template for server certificates.
>
> If you are running an enterprise certification authority (CA) on a
> computer
> running Windows Server 2003, Enterprise Edition, Windows Server 2003,
> Datacenter Edition, the 64-bit version of Windows Server 2003, Enterprise
> Edition, or the 64-bit version of Windows Server 2003, Datacenter Edition,
> you can use the RAS and IAS Server template for server certificates.
> When you configure client computer certificates using this procedure, they
> meet the minimum client certificate requirements for PEAP-TLS and EAP-TLS.
> In some cases, the values indicated in this procedure are already selected
> in the template and you will not have to change settings when configuring
> the template.
>
> Administrative credentials
>
> To complete this procedure, you must be a member of the Domain Admins or
> Enterprise Admins group.
>
> To configure server certificates using the Windows interface
> 1. On the computer running Certificate Services, click Start, click Run,
> type mmc, and then click OK.
>
> 2. On the File menu, click Add/Remove Snap-in, and then click Add.
>
> 3. In Available StandaloneSnap-ins, double-click Certificate Templates,
> click Close, and then click OK.
>
> 4. Click Certificate Templates. In the Certificate Templates details
> pane, right-click the Computer or RAS and IAS Server certificate template,
> and then click Duplicate Template.
>
> 5. In Properties of New Template, on the General tab, in Template
> Display Name, type a name for the template.
>
> 6. Select a Validity period and a Renewal period, or keep the defaults.
> 7. Click the Subject Name tab, and then verify that Build from this
> Active Directory information is selected.
>
> 8. In Subject name format, select a value other than None.
>
> 9. For server certificates, the Subject Alternative Name
> (SubjectAltName) extension in the certificate, if used, must contain the
> server's fully qualified domain name (FQDN), which is also called the DNS
> name. In Include this information in alternate subject name, select DNS
> name.
>
> 10. The server certificate must be configured with a required
> cryptographic service provider (CSP) value of Microsoft RSA SChannel
> Cryptographic Provider. To configure the CSP value, click the Request
> Handling tab, and then click CSPs.
>
> 11. In CSP Selection, select Requests must use one of the following CSPs.
>
> 12. In CSPs, select the Microsoft RSA SChannel Cryptographic Provider
> checkbox. Clear all other checkboxes in CSPs.
>
> 13. Use Certificate Services Help to learn how to configure
> autoenrollment of the server computer certificate to domain member server
> computers.
>
> 14. Use the CA Web Enrollment tool Help to learn how to manually enroll
> certificates to non-domain member server computers, if applicable to your
> deployment.
>
> --
> James McIllece, Microsoft
>
> Please do not send email directly to this alias. This is my online
> account
> name for newsgroup participation only.
>
> This posting is provided "AS IS" with no warranties, and confers no
> rights.
begin 666 IAS-Wireless-W2k3.txt
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D97,@:6X@=&AE($UI8W)O<V]F="!+;F]W;&5D9V4@0F%S93H@
`
end
.
- References:
- Re: IAS EAP (PEAP)
- From: James McIllece [MS]
- Re: IAS EAP (PEAP)
- Prev by Date: Re: IAS Add Client (command line functionality)
- Next by Date: Re: PEAP (MSCHAPV2) - Confusion over User vs. Computer Authentication
- Previous by thread: Re: IAS EAP (PEAP)
- Next by thread: PEAP (MSCHAPV2) - Confusion over User vs. Computer Authentication
- Index(es):
Relevant Pages
|
