For 802.1X authentication using certificates, is there a way to configure the Win7 native supplicant to present a specific client certificate, for example using any custom defined attribute. I see 'Use Simple certificate selection' option, but that just simplifies the selection method while still prompting the user to choose an appropriate one. I would like to avoid user intervention in choosing the certificate with the supplicant itself making a right selection.

Hi, If you have more than one group qualified for 802.1X authentication. It cannot automatically select one of them.Juke Chou TechNet Community Support

> one group qualified for 802.1X authentication Do you mean a certificate intended for client authentication in general and not specific for 802.1X alone ? If not, can you elaborate on qualification of certificate for 802.1X usage and the configuration part to do it. Thanks

Hi, Yep. Use simple certificate selection This check box enables and disables simple certificate selection. When enabled, Windows attempts to simplify the list of certificates with which the user is prompted for selection. The certificates that are usable for EAP-TLS authentication are grouped by the entity that was issued the certificate based on the Subject Alternative Name and Subject fields of the certificates. The most recently issued certificate from each group is used to create the list that is presented to the user. Simple certificate selection is only used when Use a certificate on this computer is selected. When Use a certificate on this computer is selected, simple certificate selection is enabled by default.Juke Chou TechNet Community Support

Hi, Yep. Use simple certificate selection This check box enables and disables simple certificate selection. When enabled, Windows attempts to simplify the list of certificates with which the user is prompted for selection. The certificates that are usable for EAP-TLS authentication are grouped by the entity that was issued the certificate based on the Subject Alternative Name and Subject fields of the certificates. The most recently issued certificate from each group is used to create the list that is presented to the user. Simple certificate selection is only used when Use a certificate on this computer is selected. When Use a certificate on this computer is selected, simple certificate selection is enabled by default.Juke Chou TechNet Community Support