Windows was unable to find a certificate to log you on to the netw

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I use a third party Radius server - Free Radius .
I try to authenticate an Windows XP with SP2 machine in a wireless network
(to an acces point Linksys)
The user certificate on the XP machine has "Client Authentication" Enhanced
Key Usage - and the PKCS#12 file is imported in the Personal Container of the
current user.
The radius server has a certificate with "Server Authentication" Enhanced
Key Usage.
The certification authority certificate is imported in Trusted Root on the
XP machine and is trusted also by the Radius server.
The acces point is set up for the use of the Radius server.
When I connect to the wireless network the an error appears on the XP
machine "Windows was unable to find a certificate to log you on to the
network"
The configuration is made upon the following document
www.freeradius.org/doc/EAPTLS

Can you help me to resolve this problem(error)?
Thank You
Ovidiu Pismac
MCSE ID 2836366
 
I have implemented 802.1X without any problem using Microsoft Server as the
IAS but am not familiar with the product you mention. Offhand what I would
do is logon as the user and use the mmc certificates snapin for user to look
in the personal\certificates folder to make sure that the needed certificate
is there and that is shows that the private key is also present on the
general page of the certificate. Also check for other problems with the
certificate such as making sure it has valid date and it shows as being
trusted in the certification path. Do the same on the radius computer for
the computer certificate using the mmc snapin for computer certificate. Each
computer must also trust the CA that issued the certificate used for the
other end of authentication which usually is the same CA. It may also help
to look in the logs via Event Viewer on each computer for any other helpful
messages that may provide a clue or any other logging that the radius server
application may do. The wireless network cards need to be 802.1X capable
also and it often helps to configure XP wireless to manage the wireless
connection rather than the utility from the wireless network card's
publisher. --- Steve
 
Back
Top