I´m deploying Wired GPO for Win7/XP SP3 machines with HP/3COM Switches with 802.1X configured.
Win7 are OK, but XP SP3, its not.
In XP SP3, the "Validate Server Certificate" cannot be set unchecked, even with the GPO forced to be "unchecked
In the GPO i don´t use the "Validate Server Certificate", so the option in GPO is unchecked but in XP SP3 it appears checked and i try to uncheck, but after the OK button, the optins appears cjecked again.
All my DCs are Win2008R2 (a new AD forest, created in 2010 with WIn2008R2 and Win2008R2 forest mode)
All My DCs are NPS/RADIUS
My Main DC is the CA Enterprise
My CA is in the Truested Root store on all machnes of the forest, by GPO, with no problems
The solution for now is to create a GPO to affect only Win7 machines and configure XP SP3 mannually.
There is a fix to make the ""Validate Server Certificate" option in XP SP3 to be configured (in my case, unchecked) by GPO?