Re: Security - WLAN WPA(2) 802.1x, PKI/CA, IAS/Radius, Windows 2003 AD
- From: "James McIllece [MS]" <jamesmci@xxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 19 Jan 2007 11:30:12 -0800
Friedrich Stockhammer <fritz@xxxxxxxxxxxxxx> wrote in
news:1tnpq29p95shpk331jr18mr1j8p04m5ak3@fqdn:
Hi,
two questions:
Need the IAS/radius server (runs on a windows 2003 DC) a own
certificate when we want to use a WLAN - WPA(2) 802.1x
The clients and the user have your own certificate.
On the DC/IAS server are an old, expired certificate.
We (admins, domainadmin's, enterpriseadmin's) cannot renovate this
certificate or request a new certificate.
It comes an error: .... you dont have the required rights ....
Which additional rights are needed to request certificates for
servers?
On CA server
On the server who request
In active directory
fup2: microsoft.public.internet.radius
Hi Friedrich --
You need membership in both the Enterprise Admins and the root domain's
Domain Admins group.
You might want to just configure auto-enrollment for IAS servers. The
directions on how to do this are in the following whitepaper:
"Enterprise Deployment of Secure 802.11 Networks Using Microsoft Windows"
at
http://www.microsoft.com/technet/prodtechnol/winxppro/deploy/ed80211.mspx
--
James McIllece, Microsoft
Please do not send email directly to this alias. This is my online account
name for newsgroup participation only.
This posting is provided "AS IS" with no warranties, and confers no rights.
.
- Prev by Date: VLAN with IAS and Cisco
- Next by Date: Re: VLAN with IAS and Cisco
- Previous by thread: VLAN with IAS and Cisco
- Next by thread: MAC-based authentication
- Index(es):
Relevant Pages
|
