Cisco 3.3 User Manual
Page 505
13-21
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 13 User Databases
Windows User Database
Client operating systems supporting machine authentication are:
•
Microsoft Windows XP with Service Pack 1 applied.
•
Microsoft Windows 2000 with the following:
–
Service Pack 4 applied.
–
Patch Q313664 applied (available from
).
The following list describes the essential details of enabling machine
authentication on a client computer with a Cisco Aironet 350 wireless adapter. For
more information about enabling machine authentication in Microsoft Windows
operating systems, please refer to Microsoft documentation.
1.
Make sure the wireless network adapter is installed correctly. For more
information, see the documentation provided with the wireless network
adapter.
2.
Make sure the certification authority (CA) certificate of the CA that issued
the Cisco Secure ACS server certificate is stored in machine storage on client
computers. User storage is not available during machine authentication;
therefore, if the CA certificate is in user storage, machine authentication fails.
3.
Select the wireless network:
–
In Windows XP, you can select the network on the Wireless Networks tab
of the wireless network connection properties.
–
In Windows 2000, you can enter the SSID of the wireless network
manually. This is done on the Advanced tab of the properties dialog box
for the wireless network adapter.
4.
To enable PEAP machine authentication, configure the Authentication tab. In
Windows XP, the Authentication tab is available from the properties of the
wireless network. In Windows 2000, it is available from the properties of the
wireless network connection.
a.
Select the Enable network access control using IEEE 802.1X check
box.
b.
Select the Authenticate as computer when computer information is
available check box.
c.
From the EAP type list, select Protected EAP (PEAP).