PEAP authentication on NPS doesn't work when applying latest root certificate update RRS feed

  • Question

  • If you are struggling with your WiFi right now after yesterday's root certificate update, you might have the following conditions on Windows Server 2008 R2:

    • The amount of root certificates is about 350-ish
    • The event log shows a message denying requests because of "The message received was unexpected or badly formatted."

    This is basically the same as mentioned in this question: http://social.technet.microsoft.com/Forums/en-US/winserverNAP/thread/cd2d5bc8-e89b-474e-a66f-007f20d93a8a/

    The workaround / solution is method 3 of this KB article: http://support.microsoft.com/kb/933430 (configuring Schannel to not send a series of trusted root certificates in the handshake) There's only a hotfix available for Windows Server 2003, not for Windows Server 2008 or Windows Server 2008 R2.

    My question: Will there be a hotfix for Windows 2008 R2 any time soon?

    Monday, December 17, 2012 3:46 PM