O'Reilly logo

Windows Server® 2008 PKI and Certificate Security by Brian Komar

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Deploying Certificates to Users and Computers

The following sections provide recommendations for deploying the necessary certificates for 802.1x authentication for wireless networks.

RADIUS Server

When implementing 802.1x authentication, it is recommended to use Windows Server 2008 Network Policy Server (NPS) as the RADIUS server. The implementation of computer running Windows Server 2008 allows you to restrict certificate-based authentication to certificates with a designated OID in the certificate, such as a custom application policy OID.

To enable autoenrollment of the RAS and IAS Server certificates:

  • Ensure that the RADIUS server’s computer account has membership in a custom universal or global group assigned Read, Enroll, and Autoenroll permissions ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required