Hmm... Does the esoteric Windows required criteria
(extendedKeyUsage=1.3.6.1.5.5.7.3.1 or somewhere thereabouts) :)
also work to allow macosx to not require network validation though even
for just win7+ I should see if its possible to get such a cert via
incommon...
Travis
On Mon, Jul 25,
It sounds like you want to use an ssl certificate for PEAP - that won't
generate a prompt to the user asking to trust said cert.
Unfortunately I don't think that is possible (unless you disable checking as
you mentioned) - without having someone installing (trusting) the cert ahead
of time.
On 7/25/2011 3:02 PM, Travis Schick wrote:
The problem as I understand it - is that without having a network connection
- you are
unable to verify the server presenting the certificate to you - you need to
trust it
first - and for win7/macosx the default is to prompt the user.
If the
Hi,
I'm aware of the XpressConnect option to plug-and-play a connection
configuration, but
they are really beyond our budget at this point in time.
At Swansea University (UK) we use the SU1X tool to distribute and
install a self-signed cert for our windows users as well as configure
their
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thu Jul 21 14:37:48 2011 Central Time, Jeff Kell jeff-k...@utc.edu wrote:
Has anyone been there/done that with a 3rd party certificate / non-IAS/NPS
solution?
We've used Verisign and now InCommon/Comodo certs with Steel Belted RADIUS
running