I am trying to implement a small office wireless LAN using a Cisco 2100 WLAN controller with a built-in RADIUS server. I have created a Certificate Authority and client certificates using OpenSSL. I have placed one client certificate in the user's personal cert store and the local computer's personal cert store. On a Vista Ultimate client, I have been successful in authenticating "as a user" using a wireless profile with EAP-TLS and "Smart Card or Other Certificate" set. However, when I attempt to authenticate "as a machine" using the <authMode>machine</authmode> setting in my wireless profile, I receive an "Explicit EAP Failure". Do I have to enable Single Sign On or be a member of a domain in order to authenticate wirelessly with my machine certificate? I would think that EAP-TLS using only a certificate, wouldn't require a domain. Any assistance with this would be most appreciated.

Hi There, Have you got the solution for the above problem? I have similar problem on Vista and it would be helpful if you can give me some input. Thanks in advance, Vinit