Configure 802.1X Wired Access Clients by using Group Policy Management

Applies To: Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

You can use the procedures in this section to configure Wired Network (IEEE 802.3) Policies for client computers running Windows® 7, Windows Vista®, and Windows XP with Service Pack 3 that connect to your wired Ethernet network by using 802.1X authenticating switches.

By default, you can use Wired Network (IEEE 802.3) Policies, which is a Group Policy extension, to configure the following 802.1X authentication on your wired access client computers:

  • Extensible Authentication Protocol (EAP) with Transport Layer Security (TLS), for authentication using smart cards or other certificates.

  • Protected EAP (PEAP)–TLS, for authentication using smart cards or other certificates.

  • PEAP-Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2), for authentication using secure passwords.

The following sections provide procedures about how to configure Wired Network (IEEE 802.3) Policies for computers running Windows® 7, Windows Vista®, and Windows XP with Service Pack 3:

Membership in Domain Admins , or equivalent, is the minimum required to complete these procedures.

Note

For information about activating or opening Wired Network (IEEE 802.3) Policies, see Access Group Policy Extensions for 802.1X Wired and Wireless.