Manualshelf

Specifications

ManualsBrandsExtreme Networks ManualsComputer equipmentWM200
41424344454647484950
Creating the Windows Security Infrastructure
Summit WM Technical Reference Guide, Software Version 5.350
9 On the Network Properties tab, type the wireless network name (SSID) and change wireless
network key settings as needed.
10 Click the IEEE 802.1X tab. Change 802.1X settings as needed, including specifying and configuring
the correct EAP type. Click OK twice to save changes.
The next time your Windows XP with SP1, Windows XP with SP2, and Windows Server 2003 wireless
clients update computer configuration Group Policy, their wireless network configuration will be
automatically configured.
NOTE
The version of the Wireless Network (IEEE 802.11) Policies Group Policy extension in Windows Server 2003 with no
service packs installed does not support the configuration of Wi-Fi Protected Access (WPA) authentication and
encryption settings for WPA-capable Windows wireless client computers (running Windows XP with SP1 and the WPA
Wireless Security Update in Windows XP, Windows XP with SP2, or Windows Server 2003 with SP1). However,
support for WPA settings configured through the Wireless Network (IEEE 802.11) Policies Group Policy extension
has been added to Windows Server 2003 with either the 811233 update or SP1.
To get the new Wireless Network (IEEE 802.11) Policies Group Policy extension in a Windows 2000
Active Directory domain, the Active Directory schema must be updated to include the new extension.
To update the Windows 2000 Active Directory schema, you must install at least one domain controller
in your Windows 2000 Active Directory domain that runs either Windows Server 2003 with no service
packs installed or Windows Server 2003 with SP1 (for WPA authentication and encryption settings).
Once this is complete, you must use the Group Policy snap-in from any domain member computer
running either Windows Server 2003 with no service packs installed or Windows Server 2003 with SP1
to configure Wireless Network (IEEE 802.11) Policies settings.
NOTE
The Wireless Network (IEEE 802.11) Policies Group Policy extension for Windows Server 2003 with SP1 does not
support the configuration of WPA2 authentication settings.
Step 7: Installing Computer Certificates on Wireless
Client Computers for EAP-TLS
For computer authentication with EAP-TLS, you must install a computer certificate on the wireless
client computer.
To install a computer certificate on a wireless client computer running Windows Server 2003, Windows
XP, or Windows 2000, connect to the organization intranet using an Ethernet port and do the following:
If the domain is configured for autoenrollment of computer certificates, each computer that is a
member of the domain requests a computer certificate when computer Group Policy is refreshed. To
force a refresh of computer Group Policy for a computer running Windows Server 2003 or Windows
XP, restart the computer or type gpupdate /target:computer at a command prompt. To force a refresh
of computer Group Policy for a computer running Windows 2000, restart the computer or type
secedit /refreshpolicy machine_policy at a command prompt.
If the domain is not configured for autoenrollment, you can request a “Computer” certificate using
the Certificates snap-in or you can execute a CAPICOM script to install a computer certificate.