Certificate Warning on iOS with FreeRadius2 802.1x PEAP WPA Security

  • I followed the instructions here (https://doc.pfsense.org/index.php/Using_EAP_and_PEAP_with_FreeRADIUS) to setup FreeRadius and PEAP authentication for WPA Enterprise Wifi Security.

    Everything seems to be working ok, except I would like to avoid the user having to explicitly trust the Certificate the first time they authenticate. Is that possible?

    I tried downloading the CA I created while setting it up and installing that on an iPhone and then connecting but it still prompted me to trust the certificate.

    I am trying to come up with the most seamless experience for end users and I have the ability to push certs to the iOS devices via MDM.

    Any help would be appreciated.

  • Try installing cert of the FreeRADIUS server to iOS device before trying to authenticate, if that does not work you will most likely need a cert issued by trusted CA for your FreeRADIUS server certificate.

  • Did you try pushing a wifi configuration profile with your root certificate in it?  I don't think a publicly trusted certificate would work here.  I think you need to explicitly trust a RADIUS server certificate when you're using EAP.

Log in to reply