I have 2 computers I am testing with. One joined to the Active Directory Domain and the other is not.
I have Clearpass set up as my authentication server and I am using AD as my CA.
1. I started my test with the non-domain laptop which had the validate server certificate checked and Trusted Certificate Authority unchecked. When I attempt to connect, I get a pop up from windows that tells me I need to "Terminate or Connect" . I click connect and everything works as intended. I verified in the Protected EAP settings that the correct Trusted CA is selected.
2.I started with the same settings on the Domain laptop ,Validate server certifcate checked and Trusted Certificate Authority unchecked. To my surprise, the client is connecting to the network. No pop-up for the cert. I have also tested selecting random Trusted CA and they all work.
Has anybody experienced this?
Could it have something to do with the laptops being joined to AD and having the same root CA?