In addition, if we want to use PEAP-MSCHAP v2, we have to install a server certificate to NPS server. You should change EAP types toĮdit Protected EAP Properties, remove the Secured password (EAP-MSCHAP v2), then add If you want to only allow access for clients that have a valid domain user account and a client certificate.
>So far it works for Windows boxes, but while trying to connect from a smartphone using a valid account but without a certificate and was able to connect.ĭue to the EAP types is EAP-MSCHAP v2 in this network policy, this is a method for secure password authentication, so the client don’t need to install a user or computer certificate. And the NPS server has installed a computer certificate. Based on the information of two policies, the Authentication Method of Network Policy is PEAP, and the EAP Types is EAP-MSCHAP v2.
0 kommentar(er)
