Hi there, I'm trying to deploy 802.1x across our ethernet switches. I've successfully configured everything, and i have it set up so that I on a freshly built computer I can authenticate as a user over PEAP, and then jointhe computer to the domain. This works fine, and the computer gets GP details and reboots. But, at this point, the GPO that I've configured to apply 802.1x using Computer Certificates applies itself, before the computer has got around to auto-enrolling and grabbing a certificate! This seems a Chicken / Egg problem to me, but I'm hoping somebody may have suggestions? Thanks Tom

Hi Tom,Before configuring wired client computer for EAP-TLS, you should install the computer certificate on the wired client computers. To install a computer certificate on a wired client computers for EAP-TLS, please connect to the organization intranet using an unauthenticated Ethernet port first. For more information, please refer to the following article:Deployment of IEEE 802.1X for Wired Networks Using Microsoft Windowshttp://www.microsoft.com/downloads/details.aspx?familyid=05951071-6b20-4cef-9939-47c397ffd3dd&displaylang=enHope it helps.Sincerely,Joson ZhouMicrosoft Online Community Support