11-19-2012 08:50 AM - edited 07-03-2021 11:04 PM
It seems that oncea client has a certificate, they can attach to any SSID that uses cert based authentication. Is there a way to limit a certificate to only allow acces to a specific WLAN/SSID?
11-19-2012 08:52 AM
Yes, but I'm guessing your talking about 802.1x. You can use the Called-Station-ID and specify the ssid in there. You would have to have individual polices per ssid and also depends on your radius server.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
11-19-2012 08:54 AM
Here is an example for IAS or NPS:
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
11-19-2012 01:09 PM
If you are using a MS Radius IAS/NPS you should be able to use a dedicate certificate per Policy. But for PEAP e.g. you need just a trust and go. An Apple don't take care if he hast the root installed, he aks you, you accepts and you are in when you have the credentials.
I would go like Scot to checkout the Radius otions and I they helps you.
Why do you want to prevent this?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide