Hi, I am implementing dot1x with PEAP for wire and wireless access, before I get CA running, I am using ACS server self-signed certificate. However, XP client won't be able to authenticate if I have the "validate server certificate" box checked. I did not check ACS's authentication log, but most probably the authentication failed because client can not validate server certificate. It is my understanding that this box has to be checked to have a valid dot1x deployment.
Since I don't have a central CA running(yet), how can I make the client validate this self-signed certificate? conceptually, XP 's dot1x PEAP should allow user to trust any certificate issued by any CA.