WPA verisign certificate prompts users
When a user connects to our WPA wireless network using PEAP-MSCHAPv2 they are prompted by a certificate prompt that says. the issuer of this certificate could not be found The client can accept the certificate which installs the Verisign server certificate as well as the Verisign Intermediate certificate on the clients machine. The client can then login and use the WPA network. Is there something wrong in our setup because users are getting the error message or is this just the nature of using PEAP-MSCHAPv2 with Verisign's WLAN certificate and an IAS server. Mac users have to always trust the certificate or they will be prompted every time they connect to our WPA network. Nicholas Urrea Information Technology UC Hastings College of the Law [EMAIL PROTECTED] x4718 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] WPA verisign certificate prompts users
We were just going through the same issue. We were able to find a work around that will work for us. We are running Cisco lwapp code 4.2.130. -Doug Douglas R. Bentley University Information Technology Systems Engineering Group 727 Elmwood Avenue, Suite 132 Rochester, NY 14620 Office: (585) 275-6550 Fax:(585) 273-1013 Mailto:[EMAIL PROTECTED] www.rochester.edu/its/ From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:[EMAIL PROTECTED] On Behalf Of Urrea, Nick Sent: Friday, October 10, 2008 12:14 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] WPA verisign certificate prompts users When a user connects to our WPA wireless network using PEAP-MSCHAPv2 they are prompted by a certificate prompt that says. the issuer of this certificate could not be found The client can accept the certificate which installs the Verisign server certificate as well as the Verisign Intermediate certificate on the clients machine. The client can then login and use the WPA network. Is there something wrong in our setup because users are getting the error message or is this just the nature of using PEAP-MSCHAPv2 with Verisign's WLAN certificate and an IAS server. Mac users have to always trust the certificate or they will be prompted every time they connect to our WPA network. Nicholas Urrea Information Technology UC Hastings College of the Law [EMAIL PROTECTED] x4718 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. image001.jpg
Re: [WIRELESS-LAN] WPA verisign certificate prompts users
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 At 09:14 -0700 10/10/2008, Urrea, Nick wrote: When a user connects to our WPA wireless network using PEAP-MSCHAPv2 they are prompted by a certificate prompt that says. the issuer of this certificate could not be found The client can accept the certificate which installs the Verisign server certificate as well as the Verisign Intermediate certificate on the clients machine. You probably want to set the RADIUS server to send the intermediate certificate as well as the server certificate to make sure that there's a clear path all the way back up to the root certificates on the client machines. -BEGIN PGP SIGNATURE- Version: 9.8.3.4028 wj8DBQFI759XDlQHnMkeAWMRAoviAJ0eaGyQbAnCnSAjhvNQiV2UMH+mlACeMim+ 09ZAVwQpCJZ2Bh3jzh28TvQ= =a7E0 -END PGP SIGNATURE- -- Julian Y. Koh mailto:[EMAIL PROTECTED] Network Engineer phone:847-467-5780 Telecommunications and Network Services Northwestern University PGP Public Key:http://bt.ittns.northwestern.edu/julian/pgppubkey.html ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.