11-19-2012 08:50 AM - edited 07-03-2021 11:04 PM
It seems that oncea client has a certificate, they can attach to any SSID that uses cert based authentication. Is there a way to limit a certificate to only allow acces to a specific WLAN/SSID?
11-19-2012 08:52 AM
Yes, but I'm guessing your talking about 802.1x. You can use the Called-Station-ID and specify the ssid in there. You would have to have individual polices per ssid and also depends on your radius server.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
11-19-2012 08:54 AM
Here is an example for IAS or NPS:
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
11-19-2012 01:09 PM
If you are using a MS Radius IAS/NPS you should be able to use a dedicate certificate per Policy. But for PEAP e.g. you need just a trust and go. An Apple don't take care if he hast the root installed, he aks you, you accepts and you are in when you have the credentials.
I would go like Scot to checkout the Radius otions and I they helps you.
Why do you want to prevent this?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: