Therlian
2nd September 2005, 05:51 PM
Our organization has setup 802.1x for authentication to our LAN environment. There purpose for that is (since everyone always asks) so that when someone tries to connect to our network with a rogue machine, even if we allow them in as a guest, they will be put on an internet only VLAN and not allowed on our production network.
Anyway, I am currently running my Fedora Core in a vmware environment, but I would like to put Fedora Core as my most machine rather than as my guest. But in order to authenticate to our network, you must have a valid certificate given out by our Windows PKI certificate server, and support active client authentication; such as the Windows registry key "SupplicantMode=dword 0x00000003". Also, to make things even more complicated, our certs are handed out to our domain clients through group policy.
Does anyone have any ideas if I am able to get a good machine cert, how I can put that cert into Fedora Core so it will use the cert to authenticate to the network? And if anyone if feeling really ambitious, any tips to getting our Windows server to give my FC client a cert would be appreciated too.
Anyway, I am currently running my Fedora Core in a vmware environment, but I would like to put Fedora Core as my most machine rather than as my guest. But in order to authenticate to our network, you must have a valid certificate given out by our Windows PKI certificate server, and support active client authentication; such as the Windows registry key "SupplicantMode=dword 0x00000003". Also, to make things even more complicated, our certs are handed out to our domain clients through group policy.
Does anyone have any ideas if I am able to get a good machine cert, how I can put that cert into Fedora Core so it will use the cert to authenticate to the network? And if anyone if feeling really ambitious, any tips to getting our Windows server to give my FC client a cert would be appreciated too.
