+ Post New Thread
Results 1 to 6 of 6
Windows Thread, 802.11x Authentication with Redirected App data in Technical; Hi all, (In the words of Dwight Schrute) Question, Has anyone gone down the road of 802.11x authentication with a ...
  1. #1
    Jamo's Avatar
    Join Date
    Jan 2009
    Posts
    1,365
    Thank Post
    66
    Thanked 178 Times in 150 Posts
    Rep Power
    62

    Cool 802.11x Authentication with Redirected App data

    Hi all,

    (In the words of Dwight Schrute)

    Question,

    Has anyone gone down the road of 802.11x authentication with a redirected app data folder before?

    We don't have roaming profiles so app data is redirected and stored on one of our servers. This works ok, but when it comes to 802.11x auth the machine will authenticate ok then the user logs in....

    The user then gets kicked off just after the logon process has completed due to the certificates for EAP-TLS being stored in the %appdata% path.

    Has anyone got this working? I suppose we could use machine only authentication which would solve this problem, but I would be interested if anyone has come across a solution. (Also not validating server certificates is not a good solution as its a security hole I would not like to open!)

    James

  2. #2
    Jamo's Avatar
    Join Date
    Jan 2009
    Posts
    1,365
    Thank Post
    66
    Thanked 178 Times in 150 Posts
    Rep Power
    62
    Or a better question may be:

    Has anyone successfully deployed 802.11x authentication with 'Machine with User Re-Authentication' AND have a redirected application data folder......

  3. #3

    Join Date
    Oct 2005
    Location
    East Midlands
    Posts
    748
    Thank Post
    17
    Thanked 109 Times in 69 Posts
    Rep Power
    38

  4. Thanks to spc-rocket from:

    Jamo (21st January 2011)

  5. #4
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,505
    Thank Post
    10
    Thanked 508 Times in 445 Posts
    Rep Power
    116
    Quote Originally Posted by Jamo View Post
    Or a better question may be:

    Has anyone successfully deployed 802.11x authentication with 'Machine with User Re-Authentication' AND have a redirected application data folder......
    While I have used 802.11x, a lot (site wide), it has only been with machine only authentication. I would however say this, whatever you do with 802.1x don't bother if you are using XP. Vista/7 will hold various policy and login processes while the authentication happens, XP does not. On 7 now, not prefect still, but works nearly all the time (clock issues mostly!).

    I did use 802.1x with XP, but the faster the machine got, the less likely it was to get everything going in time for policies and scripts to be applied at boot.

  6. Thanks to DMcCoy from:

    Jamo (21st January 2011)

  7. #5
    Jamo's Avatar
    Join Date
    Jan 2009
    Posts
    1,365
    Thank Post
    66
    Thanked 178 Times in 150 Posts
    Rep Power
    62
    I think machine only authentication will be the answer here, I have tried a lot to get user auth working without having to stick app data back on C: but can't seem to get round the fact that when the machine is disconnected from the network the user account can no longer access its certificates on the server due to the network connection being severed. Seems like a completely stupid thing to do!

  8. #6
    Jamo's Avatar
    Join Date
    Jan 2009
    Posts
    1,365
    Thank Post
    66
    Thanked 178 Times in 150 Posts
    Rep Power
    62
    We are probably going to use EAP-TLS due to Authentication may not succeed when you use PEAP-MS-CHAP-v2 as the authentication method for an 802.1X connection in Windows Vista, Windows XP, Windows Server 2003, and Windows 2000 which we have previously had problems with (staff coming back after holidays and having hundreds of laptops which then have to be booted with the cable as users can't log on!!).



SHARE:
+ Post New Thread

Similar Threads

  1. redirected app data
    By sted in forum Windows Server 2008
    Replies: 5
    Last Post: 3rd February 2010, 04:07 PM
  2. 802.1x-Radius Wireless Authentication
    By jayemm in forum Wireless Networks
    Replies: 5
    Last Post: 22nd September 2009, 11:50 AM
  3. App Data Problems
    By Gibson335 in forum Windows
    Replies: 0
    Last Post: 3rd March 2009, 04:31 PM
  4. Wireless 802.1x RADIUS authentication using IAS server
    By spc-rocket in forum Wireless Networks
    Replies: 0
    Last Post: 3rd January 2008, 07:15 PM
  5. Replies: 6
    Last Post: 11th April 2007, 05:30 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •