Re: Smart Card Logon and 802.1x Authentication
- From: PIV Man <PIVMan@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 27 Nov 2007 18:42:04 -0800
Jan,
Thanks for the information. I'll assume our solution will work as
designed, then. If anyone else has any experience with this, please let me
know how it went.
"Jan Spooren" wrote:
Hi PIV Man,.
I've read some content that indicated that a Smart Card Logon certificate
could not be used for 802.1x Authentication with the 802.1X Windows
Client.
Is this restriction still true or is this outdated information ? This is
a
tough restriction for something like a PIV Card, which as one (of four)
certificates dedicated to authentication purposes. The authentication
certificate works well for Smart Card Logon and in some environments would
need to be used for 802.1x authentication for wireless as well. That
restriction basically kills everything if you have alot of wireless going
on.
I haven't tested with the 'Smart Card Logon' certificate template, but it
would surprise me if that wouldn't work. In any case, a certificate created
with the 'Smart Card User' certificate template can be used both for smart
card logon and 802.1x authentication.
Cheers,
Jan.
- References:
- Re: Smart Card Logon and 802.1x Authentication
- From: Jan Spooren
- Re: Smart Card Logon and 802.1x Authentication
- Prev by Date: Re: Smart Card Logon and 802.1x Authentication
- Next by Date: Re: How to prevent users on unauthorized machines from w2k3 files
- Previous by thread: Re: Smart Card Logon and 802.1x Authentication
- Next by thread: Re: How to prevent users on unauthorized machines from w2k3 files
- Index(es):
Relevant Pages
|
|
