Re: Certificates for Wireless Networks
- From: "Brian Komar \(MVP\)" <brian.komar@xxxxxxxxxxxxxxxxx>
- Date: Tue, 29 Jul 2008 20:23:37 -0500
The best solution will be to upgrade the CA server to enterprise edition and use autoenrollment, to be honest with you.
You are growing to the number of workstations where autoenrollment is the only way to go. You have a management nightmare unless you use autoenrollment.
Alternatively, look at the enroll.vbs script included in my 2003 PKI book. A scripted enrollment could be used.
Brian
"Redleg6" <redleg6@xxxxxxxxxxxxxxxx> wrote in message news:%23IJvHeZ8IHA.4988@xxxxxxxxxxxxxxxxxxxxxxx
In our hospital we have a Win2003 domain with about 150 workstations.Six workstations are "Cows" (computer on wheels) that use a wireless connection to pass senstive medical information. AP's are Cisco. The wireless part of the connection is secured using EAP-TLS with user certificates. We are using an Enterprise CA to issue the certificates. We cannot use autoenrollment for certificates because we do not have a Window2003
Enterprise server.
We are considering expanding the use of wireless workstations to 50 or more. This presents an issue for our very small IT staff. Each wireless workstation is used by about 20 people which means 20 user certificates have to be installed/manged on each COW.
Question: is there another design that would still provide EAP-TLS level security for our wireless network with having so many certificates to manage? Or is there a way to install the certificates, in-mass, rather than one at a time.
.
- Follow-Ups:
- Re: Certificates for Wireless Networks
- From: Redleg6
- Re: Certificates for Wireless Networks
- References:
- Certificates for Wireless Networks
- From: Redleg6
- Certificates for Wireless Networks
- Prev by Date: Certificates for Wireless Networks
- Next by Date: Re: Certificates for Wireless Networks
- Previous by thread: Certificates for Wireless Networks
- Next by thread: Re: Certificates for Wireless Networks
- Index(es):
Relevant Pages
|
