Smart Card Certificate Logon and Smart Card Wireless EAP-TLS

05-19-2005, 01:40 AM

Hi all,

I have post this problem before. Since there is no reply, I will try to
re-phrase my problem.

Here is the question:

Is there anybody out there succesfully implement Smart Card Certificate
Logon and Smart Card Wireless EAP-TLS together ?

The Wireless EAP-TLS do not allow 'Smart Card Logon' on the Extended Key
Usage.
When Smart Card Logon appears on the Certificate EKU, the Wireless EAP-TLS
will failed.

So I assume we cannot use the same Certificate for the Certificate Logon and
Wireless EAP-TLS.
And I can create two different certificates for this two process.

BUT here is the problem ....

Both Smart Card Certificate Logon and Smart Card Wireless EAP-TLS call my
CSP to query for default container.

Since now I used two different certificates for this two process, how can I
know which certificate I shall used when there is a query for default
continer ?
If I used the Certificate with 'Smart Card Logon' on the EKU, the Wireless
EAP-TLS will failed.
If I used the Certificate without 'Smart Card Logon' on the EKU, the
Certificate Logon will failed.

Can anybody from Microsoft clarify this ?
Have Microsoft test this scenario before ?

Thanks for any help.....

Rudy

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Change default supplicant mode from smart card to Protected EAP	Charles	Wireless Networks	1	01-11-2008 09:28 PM
smart card authentication	YIguchi	Windows Networking	0	03-28-2007 02:03 AM
Smart card EAP authenticarion on Windown 2003 RRAS server	Borivoj Maras	Windows Networking	1	02-18-2006 04:18 PM
smart questions	gimickser	Linux Networking	0	01-19-2005 09:09 PM
Smart card,thumbdriver do the same thing	Wishy13764	Windows Networking	0	10-30-2003 05:58 PM