How to Configure OU 802.1x Group Policy for Domain Joined Computers to Connect to UO-­‐Staff Wired on the Future State Network If you manage group policy for Windows computers, the following information will assist you in configuring the 802.1 policy for your Registry domain joined computers. This policy assumes users log onto their computers using their University usernames and passwords. 1. Firstly, you need to define the Wired Autoconfig Service Policy by going to Computer Configuration > Policies > Windows Settings > Security Settings > System Services > Wired Autoconfig. Define the policy as Automatic. 2. Next you need to set up the 802.1x policy. This policy is located under Computer Configuration > Policies > Windows Settings > Security Settings > Wired network (802.3) Policies. Note that 802.3 is a technology that supports the IEEE 802.1 network architecture. When you create a new policy, the Properties window will open. Under the General tab, make sure that Don’t allow shared user credentials for network authentication is checked. 3. Go to the Security tab and uncheck Cache user information for subsequent connections to this network. Leave defaults of Microsoft Protected PEAP as the network authentication method and User or Computer Authentication as the authentication mode. 4. Click on the Properties button beside Microsoft: Protected EAP (PEAP). Uncheck Validate server certificate. 5. Make sure Secured Password (EAP-­‐MSCHAP v2) is selected and Click on Configure. Leave the default settings set to Automatically use my Windows Logon name and password. Click OK. 6. Click on the Advanced… button on the Security tab and keep the default settings. Click OK to close all open windows. If you need help, please contact the ITS Service Desk: Phone Email (479) 8888 its.servicedesk@otago.ac.nz