https://community.cisco.com/t5/network-access-control/certificates-wireless-users-any-comments/m-p/433615#M428743 <HTML><HEAD></HEAD><BODY><P>In a Microsoft-predominant network, the new certs can be pushed out via GPO, and probably can be updated with SMS. </P><P></P><P>For non-Microsoft, or non-AD clients, the certificate can be gained by the users easily by pointing at the <A class="jive-link-custom" href="http://servername/certsrv" target="_blank">http://servername/certsrv</A> URL and performing a few mouse-clicks.</P><P></P><P>For *nix environments, the cert updates can be installed at the client through the login scripts that also set up their environments. </P><P></P><P>It's a doable thing, most of the time. There will always be situations that require a "desktop person" in intervene. </P><P></P><P>FWIW</P><P></P><P>Scott</P><P></P></BODY></HTML> Sat, 30 Jul 2005 20:51:31 GMT scottmac 2005-07-30T20:51:31Z https://community.cisco.com/t5/network-access-control/certificates-wireless-users-any-comments/m-p/433614#M428736 <P>The problem is the cert is only valid for 1 year (which is what the Enterprise Admins set up), so when the year is up, I can find no way to automatically renew all the certs so the users do not have to intervene and request a new certificate again.</P> Sun, 10 Mar 2019 21:15:03 GMT https://community.cisco.com/t5/network-access-control/certificates-wireless-users-any-comments/m-p/433614#M428736 RAFFI TASHJIAN 2019-03-10T21:15:03Z https://community.cisco.com/t5/network-access-control/certificates-wireless-users-any-comments/m-p/433615#M428743 <HTML><HEAD></HEAD><BODY><P>In a Microsoft-predominant network, the new certs can be pushed out via GPO, and probably can be updated with SMS. </P><P></P><P>For non-Microsoft, or non-AD clients, the certificate can be gained by the users easily by pointing at the <A class="jive-link-custom" href="http://servername/certsrv" target="_blank">http://servername/certsrv</A> URL and performing a few mouse-clicks.</P><P></P><P>For *nix environments, the cert updates can be installed at the client through the login scripts that also set up their environments. </P><P></P><P>It's a doable thing, most of the time. There will always be situations that require a "desktop person" in intervene. </P><P></P><P>FWIW</P><P></P><P>Scott</P><P></P></BODY></HTML> Sat, 30 Jul 2005 20:51:31 GMT https://community.cisco.com/t5/network-access-control/certificates-wireless-users-any-comments/m-p/433615#M428743 scottmac 2005-07-30T20:51:31Z