|
windows
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
root CA expired now machine authentication broken (please help)certificate authority. I then right clicked on the CA and clicked "renew CA certificate" with same key. Now none of my Wireless clients (all are Windows XP) are able to do machine authentication. Even if I hard wire the clients in and restart them so that they renew their certificates the machine will still not authenticate. Users however, are able to authenticate to the wireless network just fine. I have a wireless network setup in a GPO for the whole domain and the configuration is set like this. SSID: Dnet network authentication: WPA data encryption: TKIP EAP type: PEAP authenticate as computer when computer information is available: is checked and computer authentication is set to: with user re-authentication under the settings tab I have: Validate server certificate: checked connect to these servers: then I list out my ISA servers do not prompt user to authorize new servers or trusted certification authorities: checked select authentication method: secured password EAP-MSCHAP v2 enable fast reconnect: checked Does anyone have advice on what I should try next? Assume you use IAS, any errors in the Event Viewer?
-- Show quoteHide quoteBob Lin, MS-MVP, MCSE & CNE Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com "Chris T." <tat***@gmail.com> wrote in message news:OMhNtiYyJHA.4116@TK2MSFTNGP04.phx.gbl... > Recently the root CA for my domain expired on my Windows 2003 std > certificate authority. > > > > I then right clicked on the CA and clicked "renew CA certificate" with > same key. > > > > Now none of my Wireless clients (all are Windows XP) are able to do > machine authentication. > > > > Even if I hard wire the clients in and restart them so that they renew > their certificates the machine will still not authenticate. Users however, > are able to authenticate to the wireless network just fine. > > > > > > I have a wireless network setup in a GPO for the whole domain and the > configuration is set like this. > > > > SSID: Dnet > > network authentication: WPA > > data encryption: TKIP > > EAP type: PEAP > > authenticate as computer when computer information is available: is > checked > > and computer authentication is set to: with user re-authentication > > > > under the settings tab I have: > > > > Validate server certificate: checked > > connect to these servers: then I list out my ISA servers > > do not prompt user to authorize new servers or trusted certification > authorities: checked > > select authentication method: secured password EAP-MSCHAP v2 > > enable fast reconnect: checked > > > > > > Does anyone have advice on what I should try next? > > > Yes I am using IAS
what is strange is that I do not see any failed events in the system log for IAS for workstation whi-02881 I see this message under Security: Event ID 680 logon attempt by: microsoft_authentication_package_v1_0 logon account: host/whi-02881.domain.com source workstation: error code: 0xc0000064 Show quoteHide quote "Bob Lin (MS-MVP)" <nore***@chicagotech.net> wrote in message news:1867319B-0726-4E92-AEF3-5A0619D0FECB@microsoft.com... > Assume you use IAS, any errors in the Event Viewer? > > -- > Bob Lin, MS-MVP, MCSE & CNE > Networking, Internet, Routing, VPN Troubleshooting on > http://www.ChicagoTech.net > How to Setup Windows, Network, VPN & Remote Access on > http://www.HowToNetworking.com > > > "Chris T." <tat***@gmail.com> wrote in message > news:OMhNtiYyJHA.4116@TK2MSFTNGP04.phx.gbl... >> Recently the root CA for my domain expired on my Windows 2003 std >> certificate authority. >> >> >> >> I then right clicked on the CA and clicked "renew CA certificate" with >> same key. >> >> >> >> Now none of my Wireless clients (all are Windows XP) are able to do >> machine authentication. >> >> >> >> Even if I hard wire the clients in and restart them so that they renew >> their certificates the machine will still not authenticate. Users >> however, are able to authenticate to the wireless network just fine. >> >> >> >> >> >> I have a wireless network setup in a GPO for the whole domain and the >> configuration is set like this. >> >> >> >> SSID: Dnet >> >> network authentication: WPA >> >> data encryption: TKIP >> >> EAP type: PEAP >> >> authenticate as computer when computer information is available: is >> checked >> >> and computer authentication is set to: with user re-authentication >> >> >> >> under the settings tab I have: >> >> >> >> Validate server certificate: checked >> >> connect to these servers: then I list out my ISA servers >> >> do not prompt user to authorize new servers or trusted certification >> authorities: checked >> >> select authentication method: secured password EAP-MSCHAP v2 >> >> enable fast reconnect: checked >> >> >> >> >> >> Does anyone have advice on what I should try next? >> >> >> > 
Thread options
Other interesting topics
duplicate name on network when switching wireless to wired network
route wan trafic to wireless adapter; lan through wired connecting a laptop to network. Suddenly will not connect to one of my networks Totally wireless network Script Wireless Zero Config on XP? PRINTING TO A REMOTE PRINTER Laptop Adapter File transfer through OBEX protocol authentication failed while connecting to D link router for high s |
|||||||||||||||||||||||
