+ Post New Thread
Results 1 to 7 of 7
Windows Server 2008 Thread, Wireless setings GPO in Technical; Hi all, I have been trying to send wireless settings via GPO to client machines. I have been able to ...
  1. #1
    lafleur1977's Avatar
    Join Date
    May 2009
    Location
    Lancashire
    Posts
    144
    Thank Post
    105
    Thanked 4 Times in 4 Posts
    Rep Power
    11

    Wireless setings GPO

    Hi all,

    I have been trying to send wireless settings via GPO to client machines. I have been able to add various wireless profiles for XP and Vista but neither allow me to enter a wireless network key.

    I have been going to:

    Computer > policies > windows settings > security settings > wireless network 802.11 policies.

    Any ideas? I am trying to do this so we don't have to manually add wireless settings and often the settings get altered and users can't connect.

    Thanks

  2. #2
    danrhodes's Avatar
    Join Date
    Sep 2008
    Location
    Wath Upon Dearne
    Posts
    1,513
    Thank Post
    157
    Thanked 181 Times in 150 Posts
    Rep Power
    67
    Quote Originally Posted by lafleur1977 View Post
    Hi all,

    I have been trying to send wireless settings via GPO to client machines. I have been able to add various wireless profiles for XP and Vista but neither allow me to enter a wireless network key.

    I have been going to:

    Computer > policies > windows settings > security settings > wireless network 802.11 policies.

    Any ideas? I am trying to do this so we don't have to manually add wireless settings and often the settings get altered and users can't connect.

    Thanks
    Those can't be deployed. If you're seeking a 100% Group Policy
    administration solution, I guess you'd have to go with a certificate
    based solution where clients are authenticated through certificates that
    got rolled out with GP.

    The encryption keys can't be rolled out with Group Policy

    D

  3. #3
    lafleur1977's Avatar
    Join Date
    May 2009
    Location
    Lancashire
    Posts
    144
    Thank Post
    105
    Thanked 4 Times in 4 Posts
    Rep Power
    11
    Thanks for your reply.

    Didn't think is was possible but was just wondering. How secure is the certificate option? Do you have any links to point me in the direction of setting it up?


    Thanks.

  4. #4
    danrhodes's Avatar
    Join Date
    Sep 2008
    Location
    Wath Upon Dearne
    Posts
    1,513
    Thank Post
    157
    Thanked 181 Times in 150 Posts
    Rep Power
    67
    Not something I do regular.

    Define 802.1X authentication for wireless networks in Group Policy: Wireless


    You need to create a trusted and signed cert on your CA then export it to the clients via GP, this way they will be able to connect to your wireless network.

    D

  5. #5


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,506
    Thank Post
    227
    Thanked 848 Times in 727 Posts
    Rep Power
    287
    you can add a script that fires the setting out though using WifiCfg_XP

    something like

    Code:
    @ECHO OFF
    REM --- Check for an existing installation of WifiCfg_XP.exe
    if exist "c:\windows\WifiCfg_XP.exe" goto _End
    copy "\\server\hiddenshare$\WifiCfg_XP.exe" c:\windows
    Wificfg_xp.exe -add /SSID:myssid /Authentication:WPAPSK /NetworkKey:eatatjoes /Encryption:TKIP
    REM --- End of the script
    :_End
    as long as the script is kept in a safe non-obvious location shouldnt be too much of a risk but id avoid putting it in netlogon

  6. #6

    Join Date
    Oct 2005
    Location
    East Midlands
    Posts
    737
    Thank Post
    17
    Thanked 105 Times in 65 Posts
    Rep Power
    36
    Quote Originally Posted by danrhodes View Post
    Not something I do regular.

    Define 802.1X authentication for wireless networks in Group Policy: Wireless


    You need to create a trusted and signed cert on your CA then export it to the clients via GP, this way they will be able to connect to your wireless network.

    D
    You can use the 802.1x authentication with MSCHAP v2 and TKIP. This only requires a cert to be issued to the IAS (Radius) server only and does not need the certificate deploying to the client unless they are not part of the domain.

    More details and a step-by-step guide that i wrote.

    http://www.edugeek.net/forums/networ...as-server.html

    Ash.

  7. Thanks to spc-rocket from:

    danrhodes (30th March 2010)

  8. #7
    danrhodes's Avatar
    Join Date
    Sep 2008
    Location
    Wath Upon Dearne
    Posts
    1,513
    Thank Post
    157
    Thanked 181 Times in 150 Posts
    Rep Power
    67
    Quote Originally Posted by spc-rocket View Post
    You can use the 802.1x authentication with MSCHAP v2 and TKIP. This only requires a cert to be issued to the IAS (Radius) server only and does not need the certificate deploying to the client unless they are not part of the domain.

    More details and a step-by-step guide that i wrote.

    http://www.edugeek.net/forums/networ...as-server.html

    Ash.
    Taken a copy of that onto my Pen, thanks Ash.

SHARE:
+ Post New Thread

Similar Threads

  1. Wireless laptops & GPO
    By Aaron in forum Windows
    Replies: 16
    Last Post: 5th March 2010, 03:32 PM
  2. Am I missing something (xp wireless via GPO)??
    By james14100 in forum Windows
    Replies: 8
    Last Post: 15th September 2009, 06:27 PM
  3. Wireless settings via GPO
    By Kyle in forum Windows
    Replies: 3
    Last Post: 16th May 2008, 04:04 PM
  4. Replies: 1
    Last Post: 14th May 2008, 03:30 PM
  5. Replies: 21
    Last Post: 29th December 2007, 10:53 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •