Active Directory Schema extension for Wireless 2

[mlc9]

I am trying push out the wireless group policy to my Windows network using Win 2K3 server. The issue is that Win 2K3 does not allow for WPA2 encryption in the default group policy, but apparently a schema extension will fix this per Microsoft below:

http://technet.microsoft.com/en-gb/library/bb727029.aspx

I have done everything the article refers to regarding LDIFDE, and even get the appropriate number of successful messages on the command prompt after running. The problem is that my Win 2K3 wireless group policy still does not contain WPA2 in the drop-down box. Can anyone help? Does the server need to be restarted (not a big deal, but won't do it if I don't have to)?

 

[IllogicallyLogical]

Are you trying to cofigure the policy on the Windows 2003 Server? Per the article, the policy must be configured using the Group Policy Object Editor on a computer running Windows Vista or Windows Server 2008. Also, note that clients running Windows XP prior to SP3 will need the Wireless Client Update to support this Group Policy setting.

- Description of the Wireless Client Update for Windows XP with Service Pack 2

http://support.microsoft.com/kb/917021

Joey
CCNA, MCSA 2003, MCP, A+, Network+, Wireless#

 

[mlc9]

Actually the article does speak of doing it on a domain controller running Windows Server 2003.

All of my clients are running WinXP SP3, so that part should not be a problem.

Still seeking an answer, as the WPA2 option is still not showing up in my wireless group policy options.

 

[unclerico]

As Illogical says, you need to do it on a Windows 2008 or Vista machine. You can look all day long on a Windows 2003 box but you will not find it.

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[IllogicallyLogical]

Yes, the policy will work on a 2003 domain, but must be configured from a machine running Vista or Server 2008.

Per the article you linked.

http://technet.microsoft.com/en-gb/library/bb727029.aspx

Configure enhanced wireless or wired Group Policy settings for the appropriate Active Directory containers (site, domain, organizational unit) by using the Group Policy Editor snap-in on the computer running Windows Vista.

Per the article I linked in the second posting.

http://support.microsoft.com/kb/917021

To configure WPA2 authentication settings for wireless clients that are running Windows XP with SP2, the client computers must be members of a Windows Server 2003 Active Directory domain. The clients must also have the Wireless Client Update for Windows XP with Service Pack 2 installed. The WPA2 authentication settings must be configured from the Group Policy Object Editor snap-in on a computer that is running Windows Vista or Windows Server Code Name “Longhorn.”

Joey
CCNA, MCSA 2003, MCP, A+, Network+, Wireless#

 

[mlc9]

Ok. The more I read it over, the more clearly it comes into focus. I can now see the part of needing to do it from Win 2008 or Vista. It just took a while for it to sink into my dumb head. It's a shame though, as neither of those exist within my network.

Thanks for helping me sort through it all.