08-05-2014 02:18 PM
We are in the process of trying to set up a wireless network that uses NPS servers to authenticate domain users with computers that are not on our domain (BYOD).
We are using a valid, wildcard SSL (with intermediate certificates) to authenticate via PEAP. The certificate was issued by Godaddy.
When trying to connect, we are getting the authentication request.
The result of a connection attempt is no connection with an event log error code of - “265: The certificate chain was issued by an authority that is not trusted.”
We have tried ensuring that the certificates are in the correct containers on the respective NPS servers: “Certificates\Personal\Certificates”
With the intermediate certificates located: “Certificates/Intermediate Certification Authorities”
All these attempts have proven fruitless. Any assistance or direction would be very much appreciated.
Solved! Go to Solution.
08-05-2014 02:22 PM
08-05-2014 02:28 PM
Thank you for your speedy reply.
Are you familiar with any documentation that indicates such? I ask only because I am going to be asked to justify the need for 4 new, independant SSL certs. I would need to present why using a wildcard will not work.
Many kind thanks,
08-05-2014 02:31 PM
08-05-2014 02:32 PM - edited 08-05-2014 02:32 PM
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
08-05-2014 02:43 PM
Forgive my ignorance here: It was my orignal intent to use individual SSL's but, I found that I couldn't find the proper place to generate the CSR, as these NPS servers don't have IIS configured as a role.
Do I need to configure IIS and generate the CSR there? Is there a more appropriate place from which I should generate the CSR? I don't seem to have any luck finding documentation on this particular issue.
Thank you for all your willingness to help.
08-05-2014 02:48 PM
08-05-2014 02:56 PM
Again, many thanks for your helpfulness.
Godaddy always includes an intermediate certificate. Is it necessary to export/import that one, as well? If so, what certificate container does it need to go into?
08-05-2014 02:58 PM