IPSEC

[shag]

Man whata pain in the ASS!...lemme tell you.

I have a Enterprise Root CA installed.

I am trying to secure wireless network via IPsec.

It seems like it should be soooo F'in simple...but i do
everything by the book, and it doesnt work.

I request the cert from the damn root CA via web
enrollment....i want an advanced cert...i choose IPsec
Offline blah blah blah....now im installing the cert as a
machine cert not a user..

Well i config the client and it give me

Error 798: Certificate could not be found for Extensible
Authentication Protocol

I have 7 F'in machine certs that ive F'in requested and
they are installed....now WTF!!!!!!

Please help ...im sick of this crap

 

[Sartan Dragonbane]

I had the exact same problem before.. I gave up.
I think it had something to do with IIS & permissions, though.

 

[Paul Adare - MVP - Microsoft Virtual PC]

microsoft.public.win2000.security news group, shag

It seems like it should be soooo F'in simple...but i do
everything by the book, and it doesnt work.

What "book" exactly are you following? What steps have you taken? All
you've described in this post is that you've attempted to use an IPSec
certificate.

I request the cert from the damn root CA via web
enrollment....i want an advanced cert...i choose IPsec
Offline blah blah blah....now im installing the cert as a
machine cert not a user..

Well i config the client and it give me

Error 798: Certificate could not be found for Extensible
Authentication Protocol

Well, if your goal is to use IPSec and you're getting an error about EAP
then you're not "following the book exactly" as IPSec and EAP are two
totally different technologies.

I have 7 F'in machine certs that ive F'in requested and
they are installed....now WTF!!!!!!

Please help ...im sick of this crap

What do you want to use to secure this WLAN? IPSec or EAP-TLS? If the
latter, here is an exhaustive guide:

http://www.microsoft.com/technet/treeview/default.asp?
url=/technet/security/prodtech/win2003/pkiwire/swlan.asp

or

http://tinyurl.com/2hawn

For IPSec on a WiFi network, here's a Google search that should provide
lots of background for you:

http://www.google.ca/search?sourceid=navclient&ie=UTF-8&oe=UTF-8
&q=ipsec+wireless+network+site%3Amicrosoft%2Ecom

or

http://tinyurl.com/27pyh

 

[Guest]

Im trying to secure my wireless....to do so using
IPsec...you configure you client to use EAP, then pick
the Certificate Authority from the list.

There is no other choice other than EAP...and according
to all magazines (window.net) this is the way to config
the client to use IPsec to secure your WLAN. If i create
a user cert. there is no cert designed for IPsec...i
doesnt give me there error of no cert...just gives me the
error that not a proper cert for the authentication you
are attempting....i have to use a machine (computer)
cert, which is desirable anyhow...cause i dont want the
user cert...i want anyone that uses that laptop to use
IPsec, so i desire a machine cert. However ....when
configing the client VPN settings ....it cannot find the
cert i need...even though i have 7 ipsec machine certs
granted to me via my enterprise CA.