I have a requirement on our wireless network to ONLY approve authentication from machines that are pre-approved. We have our wireless network setup and it's all working well using RADIUS to Microsoft AD servers on the ACS for end user/machine authentication.
We've recently installed a new digital certificate and have enabled EAP-TLS for machine authentication - again all is working as expected with the certificate being downloaded/provided to the remote client as when connection occurs.
Waht I want to do now is actually STOP the provision of the certificate so that I have to use a microsoft Group Policy to install onto the remote clients. In this way I'm thinking that I can then ONLY approve clients that have the correct certificate installed.
Sounds simple, but can I find a way of doing it? - no ... (is what I'm trying to do even possible?)
Any assiatance greatly received ...