Friday, May 18, 2012
Certificate request from an OS X Lion client
It appears that Apple has made it quite convenient to request a certificate from a Windows Certificate Authority using the AD Certificate Payload Plugin. There are a number of issues that needs to be addressed however but in the whole it seems to work fine. This method actually makes it possible for the OS X client to acquire a computer certificate used for 802.1x authentication in a very slick procedure without the usual hands-on intervention by a network technician. My next quest is to develop a similar method for the not so domain-joined devices known as iPads/iPhones. I'm leaning towards a solution involving the old NDES/SCEP service to bring clarity and justice for all.