We are starting to implement dot1x in our network and there are a few changes we have to make on the PC's. I am wondering if there is a way to make the client changes without touching every PC in the network such as SMS etc. Is there a reg hack? We use Script Logic/Desktop Authority in our network. Thanks.
For wireless, you can deploy using Group Policy. For wired network, I am afraid there is nothing at this point that you could use. Microsoft, i believe, has added or plans to add this facility in Windows Vista.
We dealt with this same issue last year. One of our sysadmin's wrote a .vbs script for WINXP clients. It sets the EAPOL registry keys for the Windows Wireless Zero Configuration Service and configures the Broadcom NIC for 802.1x authentication. We pushed it out to all our (thousands) of clients prior to locking down switchports via SMS. I'm uploading the script for anyone's interest, examination, or use. Caveats: As this is a home-grown product we are providing it without guarantee, support, or maintenance in the interest of sharing general information.
Thanks! I thought there may be a way to push out the configuration changes on the client without having to go to each PC. I will run this by our server admin folks and see if we can do this via SMS. Thanks again for your help!
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...