802.1x in a Windows LAN Environment

Therlian · #1 2nd September 2005, 05:51 PM

Our organization has setup 802.1x for authentication to our LAN environment. There purpose for that is (since everyone always asks) so that when someone tries to connect to our network with a rogue machine, even if we allow them in as a guest, they will be put on an internet only VLAN and not allowed on our production network.

Anyway, I am currently running my Fedora Core in a vmware environment, but I would like to put Fedora Core as my most machine rather than as my guest. But in order to authenticate to our network, you must have a valid certificate given out by our Windows PKI certificate server, and support active client authentication; such as the Windows registry key "SupplicantMode=dword 0x00000003". Also, to make things even more complicated, our certs are handed out to our domain clients through group policy.

Does anyone have any ideas if I am able to get a good machine cert, how I can put that cert into Fedora Core so it will use the cert to authenticate to the network? And if anyone if feeling really ambitious, any tips to getting our Windows server to give my FC client a cert would be appreciated too.

bitrain · #2 2nd September 2005, 07:13 PM

Does your wlan card already work? Which card do you have?

I'm searching for a solution too for really weird authenticating methods...

Therlian · #3 3rd September 2005, 04:24 AM

This is not on a WLAN, it's on a LAN (wired network). If I disable 802.1x on the port, then my networking works fine. But for security, I need to have 802.1x turned on, plus I need to be able to plug in at any location and be able to authenticate.