Windows Server 2008 Thread, Wireless setings GPO in Technical; Hi all,
I have been trying to send wireless settings via GPO to client machines. I have been able to ...
18th March 2010, 12:59 PM #1
Wireless setings GPO
I have been trying to send wireless settings via GPO to client machines. I have been able to add various wireless profiles for XP and Vista but neither allow me to enter a wireless network key.
I have been going to:
Computer > policies > windows settings > security settings > wireless network 802.11 policies.
Any ideas? I am trying to do this so we don't have to manually add wireless settings and often the settings get altered and users can't connect.
IDG Tech News
29th March 2010, 01:08 PM #2
Those can't be deployed. If you're seeking a 100% Group Policy
Originally Posted by lafleur1977
administration solution, I guess you'd have to go with a certificate
based solution where clients are authenticated through certificates that
got rolled out with GP.
The encryption keys can't be rolled out with Group Policy
29th March 2010, 02:40 PM #3
Thanks for your reply.
Didn't think is was possible but was just wondering. How secure is the certificate option? Do you have any links to point me in the direction of setting it up?
29th March 2010, 02:58 PM #4
Not something I do regular.
Define 802.1X authentication for wireless networks in Group Policy: Wireless
You need to create a trusted and signed cert on your CA then export it to the clients via GP, this way they will be able to connect to your wireless network.
29th March 2010, 07:00 PM #5
you can add a script that fires the setting out though using WifiCfg_XP
as long as the script is kept in a safe non-obvious location shouldnt be too much of a risk but id avoid putting it in netlogon
REM --- Check for an existing installation of WifiCfg_XP.exe
if exist "c:\windows\WifiCfg_XP.exe" goto _End
copy "\\server\hiddenshare$\WifiCfg_XP.exe" c:\windows
Wificfg_xp.exe -add /SSID:myssid /Authentication:WPAPSK /NetworkKey:eatatjoes /Encryption:TKIP
REM --- End of the script
29th March 2010, 07:07 PM #6
You can use the 802.1x authentication with MSCHAP v2 and TKIP. This only requires a cert to be issued to the IAS (Radius) server only and does not need the certificate deploying to the client unless they are not part of the domain.
Originally Posted by danrhodes
More details and a step-by-step guide that i wrote.
Thanks to spc-rocket from:
danrhodes (30th March 2010)
30th March 2010, 09:04 AM #7
Taken a copy of that onto my Pen, thanks Ash.
Originally Posted by spc-rocket
By Aaron in forum Windows
Last Post: 5th March 2010, 04:32 PM
By james14100 in forum Windows
Last Post: 15th September 2009, 07:27 PM
Last Post: 16th May 2008, 05:04 PM
Last Post: 14th May 2008, 04:30 PM
By sradams1977 in forum Scripts
Last Post: 29th December 2007, 11:53 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)