Hello,
I'm trying to get 802.1x Authentication using Active Directory setup before deploying to my users.
Intended setup: User attempts to connect to the SSID, Based on their current AD login if the account is a memberOf the correct group, allow them to connect to the SSID.
I'm not very knowledgable on certificates and could use assistance in understanding what I'm missing.
I have Clearpass added to the AD domain, and I have an https Cert setup from a trusted CA (GoDaddy), which is also in the trust list, as well as a radius cert from my AD, which is also in the trust list. Both have the full trust chain included.
I have a basic policy check, It is setup so that if a user is member of "testgroup", then use the "allow access profile". I ran policy simulation, and authentication is successful. However, I'm testing the connection to the SSID on a windows XP laptop (unsupported, but we still have some). I recieve an alerts "Windows was unable to find a certificate to log you on to the network XXXX"
Do I need to issue a cert to the client before it is able to connect to wireless? Or is a cert not needed on the client for the setup i'm intending.
If anything is unclear or more information is needed, please ask and I will do my best to clarify.