Certificate Warning on iOS with FreeRadius2 802.1x PEAP WPA Security
-
I followed the instructions here (https://doc.pfsense.org/index.php/Using_EAP_and_PEAP_with_FreeRADIUS) to setup FreeRadius and PEAP authentication for WPA Enterprise Wifi Security.
Everything seems to be working ok, except I would like to avoid the user having to explicitly trust the Certificate the first time they authenticate. Is that possible?
I tried downloading the CA I created while setting it up and installing that on an iPhone and then connecting but it still prompted me to trust the certificate.
I am trying to come up with the most seamless experience for end users and I have the ability to push certs to the iOS devices via MDM.
Any help would be appreciated.
-
Try installing cert of the FreeRADIUS server to iOS device before trying to authenticate, if that does not work you will most likely need a cert issued by trusted CA for your FreeRADIUS server certificate.
-
Did you try pushing a wifi configuration profile with your root certificate in it? I don't think a publicly trusted certificate would work here. I think you need to explicitly trust a RADIUS server certificate when you're using EAP.