3. Certificate Warning on iOS with FreeRadius2 802.1x PEAP WPA Security

Certificate Warning on iOS with FreeRadius2 802.1x PEAP WPA Security

  • J

    I followed the instructions here (https://doc.pfsense.org/index.php/Using_EAP_and_PEAP_with_FreeRADIUS) to setup FreeRadius and PEAP authentication for WPA Enterprise Wifi Security.

    Everything seems to be working ok, except I would like to avoid the user having to explicitly trust the Certificate the first time they authenticate. Is that possible?

    I tried downloading the CA I created while setting it up and installing that on an iPhone and then connecting but it still prompted me to trust the certificate.

    I am trying to come up with the most seamless experience for end users and I have the ability to push certs to the iOS devices via MDM.

    Any help would be appreciated.

    0
  • A

    Try installing cert of the FreeRADIUS server to iOS device before trying to authenticate, if that does not work you will most likely need a cert issued by trusted CA for your FreeRADIUS server certificate.

    0
  • R

    Did you try pushing a wifi configuration profile with your root certificate in it?  I don't think a publicly trusted certificate would work here.  I think you need to explicitly trust a RADIUS server certificate when you're using EAP.

    0
Log in to reply
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy