I suspect a firmware upgrade probably fixes that behaviour. If you want to accept both computer credentials and user credentials you'll need to name both "Domain Comptuers" and "Domain Users" in your policy.
By default, XP will re-authenticate with the user credential after the user logs-on (there is no way to do computer-only with XP, I believe).
How the document checking service will work The user will enter their details from their documents in the identity provider’s service.
.header_background_full .header_background_slim .welcome-container .wlc-header .wlc-content .linksys-search-form .
Search Form #lia-body .linksys-search-form .lia-js-hidden #lia-body .linksys-search-form .search-input #lia-body .linksys-search-form .lia-search-form-wrapper .search-granularity #lia-body .linksys-search-form .lia-component-common-widget-search-form input.lia-button-search Form-action #lia-body .linksys-search-form .
----- In previous posts we've explained how identity assurance works; a certified company (also known as an identity provider) will undertake a set of checks to establish to a defined level of confidence that it's really you.
To do this, they have to look at a range of evidence and different methods to reach the required level of confidence, so that someone can't easily pretend to be you using just one or two pieces of evidence.
I configured the IAS policy to grant access to Domain Computers, Authentication is set to PEAP and uses a private cert issued by our CA, the other profile settings are all default.