Manualshelf

Specifications

ManualsBrandsExtreme Networks ManualsComputer equipmentAltitude 4000 Series
41424344454647484950
Step 8: Installing User Certificates on Wireless Client Computers for EAP-TLS
Summit WM Series WLAN Switch and Altitude Access Point Software Version 4.1 Technical Reference Guide
43
If you have configured autoenrollment of user certificates, then the wireless user must update User
Configuration Group Policy to obtain a user certificate.
If you are not using autoenrollment for user certificates, use one of the following procedures to obtain a
user certificate.
Submit a user certificate request via the Web
1 Open Internet Explorer.
2 In Internet Explorer, connect to http://servername/certsrv, where servername is the name of the
Windows 2000 Web server where the CA you want to access is located.
3 Click Request a certificate, and then click Next.
4 On the Choose Request Type Web page, under User certificate request, select the type of certificate
you want to request, and click Next.
5 Do one of the following from the Identifying Information Web page: If you see the message “All the
necessary identifying information has already been collected. You may now submit your request,”
click Submit. Enter your identifying information for the certificate request, and click Submit.
6 If you see the Certificate Issued Web page, click Install this certificate
7 Close Internet Explorer
Request a certificate
1 Open an MMC console that contains Certificates – Current User.
2 In the console tree, right-click Personal, then point to All Tasks, and then click Request New
Certificate to start the Certificate Request wizard.
3 In the Certificate Request Wizard, select the following information: The type of certificate you want
to request. If you have selected the Advanced check box:
a The cryptographic service provider (CSP) you are using.
b The key length (measured in bits) of the public key associated with the certificate.
c Do not enable strong private key protection.
d If you have more than one CA available, select the name of the CA that will issue the certificate.
4 Type a friendly name for your new certificate
5 After the Certificate Request Wizard has successfully finished, click OK
Floppy Disk-Based Installation
Another method of installing a user certificate is to export the user certificate onto a floppy disk and
import it from the floppy disk onto the wireless client computer. For a floppy disk-based enrollment,
perform the following:
1 Obtain a user certificate for the wireless client’s user account from the CA through Web-based
enrollment. For more information, see the “Submit a user certificate request via the Web” procedure
previously described.
2 Export the user certificate of the wireless client’s user account to a .pfx file. For more information,
see the “Export a certificate” procedure in this section. Within the Certificate Manager Export