We fought this for a while. A wild card will never work for Windows clients as they require the common name to also be a service alt name. A wild card won't meet this.
On Fri, Feb 3, 2017 at 14:32 Brian Helman <bhel...@salemstate.edu> wrote: > I’m setting up a RADIUS test server (Server 2012 R2 NAP/NPS) to get our > configurations in place to join eduroam. Yes, I can get a temporary cert > (or beg digicert for one, since I don’t think they have an option), but we > tried to use a wildcard cert that we usually use for testing of services. > It generates/imports correctly and Android doesn’t appear to have an issue > with it, but Win7 and Win10 don’t care for it when we try to authenticate > to the wireless network. It looks like Android may be ignoring the > validation or generally fine with the wildcard. > > > > The easier question is – will a wildcard cert work here? > > The tougher question is – if yes, um .. any good references to configure > it with S2012R2? > > > > -Brian > > > > > ********** Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at > http://www.educause.edu/discuss. > > -- -- Hunter Fuller Network Engineer VBRH Annex B-1 +1 256 824 5331 Office of Information Technology The University of Alabama in Huntsville Systems and Infrastructure ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss.