Security

Dear Experts.

 

Can someone help to advise the steps needed to configure a certificate (EAP-TLS) based SSID authenticating certs through active directory?

 

As i know, we dont need onboard licenses for cert authentication with AD. So what steps do i need to configure?

Hi, 

 

This has been explained very well in below youtube Video.

https://www.youtube.com/watch?v=buNyG5WneKY

 

 

Dear Vikram,

Already saw it and no doubt a great video series. But AD CS part is almost
configured, or atleast not usable for a guy like me who has never touched
AD CS before.

Below link provide details on how to to setup Certificate services and push certificates using GPO in AD.

 

https://www.virtuallyboring.com/setup-microsoft-active-directory-certificate-services-ad-cs/

 

 

Thanks Pavan, let me check it

Can you also advise how to push certificates to android devices without
using onboard

Hi Ronin,

 

You have to look for an MDM solution presents in market to manage and configrue the android devices and their network configuration.

 

 

This video Zero to EAP-TLS - Aruba Lab Build - 'Grande Quad Shot' Edition is probably more what you look for. It covers everything from installing Windows Server, the Microsoft AD CS, group policies and the network side.

 

Dear Herman,

 

I have learned Clearpass primarily from your videos. They are indispensable.

 

Thanks for pointing to this video as well, i totally missed it.