Fortinet black logo

FortiSwitch (FortiLink) Cookbook

Home FortiSwitch 6.4.6 FortiSwitch (FortiLink) Cookbook
6.4.6
6.4.6
6.4.2
6.0.1

Configuring Windows 10

Configuring Windows 10

This section shows how to configure Windows 10 for 802.1x user authentication.

  1. Select Start, right-click Computer, select Manage, and then select Services and Applications.
  2. In the details pane, double-click Services and then do one of the following:
    • To configure the startup type, right-click Wired AutoConfig, and then select Properties. In Startup type, select Automatic and then select Start.
    • To start the service for the current session only, right-click Wired AutoConfig and then select Start.
  3. Install the RADIUS serverʼs certificate to the PC, as shown in the following figure:

  4. In the properties of the network connection, navigate to the Authentication tab, and make sure the Enable IEEE 802.1X authentication check box is selected.
  5. Select Settings.

  6. To select the Certificate Authority (CA) that the RADIUS serverʼs certificate uses, import the CA certificate into the local machine and save it in the Trusted Root Certification Authorities directory. If you purchased an SSL certificate from a major CA (such Verisign or GoDaddy), Windows should have the CA loaded and listed already.

  7. Under Advanced settings, you can specify whether you want user authentication.

  8. Make sure the Wired AutoConfig service is set up for automatic startup, as shown in the following figure. The Wired AutoConfig service allows Windows to interact with 802.1x.

  9. To verify that the PC successfully connects, check the network connections. Look for the Ethernet port and make sure that there is no “Authentication failed” message.
  10. When the authentication succeeds, you should get an IP address from the right VLAN, as shown in the following figure:

  11. When the authentication fails, you should get the IP address from the auth-fail-vlan VLAN, as shown in the following figure:

Previous
Next

Configuring Windows 10

This section shows how to configure Windows 10 for 802.1x user authentication.

  1. Select Start, right-click Computer, select Manage, and then select Services and Applications.
  2. In the details pane, double-click Services and then do one of the following:
    • To configure the startup type, right-click Wired AutoConfig, and then select Properties. In Startup type, select Automatic and then select Start.
    • To start the service for the current session only, right-click Wired AutoConfig and then select Start.
  3. Install the RADIUS serverʼs certificate to the PC, as shown in the following figure:

  4. In the properties of the network connection, navigate to the Authentication tab, and make sure the Enable IEEE 802.1X authentication check box is selected.
  5. Select Settings.

  6. To select the Certificate Authority (CA) that the RADIUS serverʼs certificate uses, import the CA certificate into the local machine and save it in the Trusted Root Certification Authorities directory. If you purchased an SSL certificate from a major CA (such Verisign or GoDaddy), Windows should have the CA loaded and listed already.

  7. Under Advanced settings, you can specify whether you want user authentication.

  8. Make sure the Wired AutoConfig service is set up for automatic startup, as shown in the following figure. The Wired AutoConfig service allows Windows to interact with 802.1x.

  9. To verify that the PC successfully connects, check the network connections. Look for the Ethernet port and make sure that there is no “Authentication failed” message.
  10. When the authentication succeeds, you should get an IP address from the right VLAN, as shown in the following figure:

  11. When the authentication fails, you should get the IP address from the auth-fail-vlan VLAN, as shown in the following figure:

Previous
Next