Discussion:
Authenticate Users AND Computers
(too old to reply)
Alex Moffitt
2008-02-27 20:53:16 UTC
Permalink
I have recently set up IAS and EAP-MSCHAP v2 using self a self signed
certificate

The problem I am facing now is, the IAS is allowing non domain
computers to access the wireless based purely on credentials. I want
to make it so they are only allowed on if they have a vaild username
and password AND their computer is part of the domain. Not either or.
Does any one have any ideas?
James McIllece [MS]
2008-02-27 21:57:49 UTC
Permalink
Post by Alex Moffitt
I have recently set up IAS and EAP-MSCHAP v2 using self a self signed
certificate
The problem I am facing now is, the IAS is allowing non domain
computers to access the wireless based purely on credentials. I want
to make it so they are only allowed on if they have a vaild username
and password AND their computer is part of the domain. Not either or.
Does any one have any ideas?
Neither EAP-MS-CHAP v2 nor EAP-TLS provide dual authentication as you
describe.

It might be possible that there is a third party EAP type that you can
purchase that does provide dual authentication, but if it exists, I am not
aware of it.
--
James McIllece, Microsoft

Please do not send email directly to this alias. This is my online account
name for newsgroup participation only.

This posting is provided "AS IS" with no warranties, and confers no rights.
Continue reading on narkive:
Loading...