1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Machine Network Authentication Using Certificates

Discussion in 'Software' started by Weemez, Mar 26, 2009.

  1. Weemez

    Weemez Kilobyte Poster

    372
    1
    0
    Hey folks, hope you'll all well!!!

    Apologies if this thread is in the wrong place.

    My head is pounding, i'm a network technician ay my work. We have various remote users. We have implemented a VPN bi-directional tunnel to our main site using Netscreen Remote VPN connecting to our Juniper Firewall at the main site. Authentication is carried out at the main site using RADIUS based on user name and password, remote user is allocated an IP address via the address pool on the main firewall.

    All the above works well, now my manager would like me to try and impliment network authentication on the remote PC/laptop using a certificate instead of username and password. I have spoken to the server team and they inform me that they dont use certificates and didn't seem keen to help, (just as my boss thought!) although they expect us to drop everything for them when they have an issue. Anyhoo he has kindly left this with me. I'm only just starting to get to grips with the large network that we look after and have never really dealt to much with Active Directory.

    I have spent a good bit of the day researching the Tech Net site, i seems a minefield! PKI's public keys, private keys etc etc. We have already got an Enterprise CA set up on the test domain controller but im lost as to how to impliment a new certificate and deploy it to allow for what im looking to do.

    I'm not looking for any of you guys to explain the whole thing but if you could put me in the right direction to find a good step by step guide to create this network authentication via certificate based on the computer, any link would be greatly appreciated.

    The test domain controller is 2000 server. The real one is 2003 server standard edition.

    Thanks you in advance and apologies if vague as im certainly no expert! :rolleyes:
     
    Certifications: HNC Computing A+ N+ ICND1
    WIP: ICND2
  2. wagnerk
    Highly Decorated Member Award

    wagnerk aka kitkatninja Moderator

    10,831
    357
    341
    You may want to see here on Edugeek. About half way down the page a guy called Ash with the handle of AshOK wrote a guide on what he did with his organisation's (school) wireless. You may also want to read the whoel thread on not just his post for more info.

    Hope this helps

    -ken
     
    Certifications: CITP, PGCert, BSc, HNC, LCGI, PTLLS, MCT, MCITP, MCTS, MCSE, MCSA:M, MCSA, MCDST, MCP, MTA, MCAS, MOS (Master), A+, N+, S+, ACA, VCA, etc... & 2nd Degree Black Belt
    WIP: PGDip
  3. Weemez

    Weemez Kilobyte Poster

    372
    1
    0
    Wagnerk, that pdf is very helpfull indeed, thank you very much mate!

    It show the steps i was looking for with regards to setting up the certificate itself.

    I love this place!

    Thanks again!
     
    Certifications: HNC Computing A+ N+ ICND1
    WIP: ICND2
  4. wagnerk
    Highly Decorated Member Award

    wagnerk aka kitkatninja Moderator

    10,831
    357
    341
    No worries :)

    I thought it was would simpler to point you to there then to re-invent the wheel :biggrin

    -ken
     
    Certifications: CITP, PGCert, BSc, HNC, LCGI, PTLLS, MCT, MCITP, MCTS, MCSE, MCSA:M, MCSA, MCDST, MCP, MTA, MCAS, MOS (Master), A+, N+, S+, ACA, VCA, etc... & 2nd Degree Black Belt
    WIP: PGDip
  5. Weemez

    Weemez Kilobyte Poster

    372
    1
    0
    Much appreciated, just what i was looking for!:thumbleft
     
    Certifications: HNC Computing A+ N+ ICND1
    WIP: ICND2

Share This Page

Loading...