# Windows ## Configurations steps 1. Log in to [Microsoft Intune](https://intune.microsoft.com/) 2. Navigate to **Devices** and subsequently **Configuration profiles** 3. Then click **Create > New policy** 4. As **Platform** select **Windows 10 and later** 5. Search the **Profile type** templates for **Wired network** and select it 6. Click **Create** and provide a descriptive name and optional **Description** 7. fill out the **Configuration settings** as it suits your environment 8. Configure the **Authentication Method** to **User** if you want to use user-type certificates for authentication or **Machine** if you would like to use device-type certificates for authentication. 9. Under **802.1X** make sure, that **Do not enforce** is selected. This way your network adapter will continue to work in environments (e.g. home office), where 802.1X is not available. 10. For **EAP Type** choose **EAP-TLS** 11. Next, as **Certificate server names** add the **Subject Alternative Name (SAN)** of your *active* RADIUS [**Server Certificate.**](/admin-portal/settings/settings-server.md#server-certificates) This can be found by expanding the active server certificate and copying the value for SAN.
12. For the **Root certificates for server validation** select the Trusted certificate profile you have previously created for the RADIUS Server Certificate. 13. Under **Client Authentication** select **SCEP certificate** as **Authentication method** 14. Finally, for **Client certificate for client authentication (Identity certificate),** select the SCEP profile you would like to use for authentication. All other settings can be configured according to your own needs and preferences. ![Showing wired profile](/files/j6aeDqulKvSQpUQk8pOg) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.radiusaas.com/profile-deployment/microsoft-intune/wired-profile/windows.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.