No Matches Found!
Try with a different search term
To connect to our company WLAN it is in the future necessary to have 2 client certificates on the device.
I have no idea how can i realisise this.
There are Android 10 and 11 devices.
You should be able to use MC to install the Certificates onto the devices and the 802.1x configuration options in the Network configuration options could also potentially allow you to include these Certificates in the WiFi configuration. I absolutely recommend testing this concept well in advance of the actual scheduled network cutover. It will be easier for you if the team administering the network can create a new SSID for the cert based auth that can be broadcast in parallel with the current presumably PSK based network so that you can transition from one to another. It will be much harder and riskier to execute a transition from one security type to another on the same SSID. If the native MC based mechanisms for configuring the cert based WiFi are not successful you may also want to explore if there are any OEM enabled options. For example, I have worked with cert based WiFi before where the options exposed by SOTI were not sufficient, but the wireless configuration options exposed by Zebra were. Instead of using a SOTI network profile in that example I used a Zebra MX configuration XML that was deployed and processed by SOTI in order to configure the WiFi. Experimentation will be key for you to understand what options you have.
Assuming you can get the network configurations successfully pushed from SOTI, including the installation of the certificates, then you can solve for the issue of pushing out these new network settings to devices already connected to the old WiFi network and enrolled in SOTI. Your other challenge is going to be the configuration of this new certificate based WiFi network on any net new devices that need to be configured or enrolled. Assuming these are WLAN devices then you may have a complicated staging process based on the fact that you'd need to get the certificates installed and WiFi configured BEFORE the devices get connected to the MDM. As an alternate strategy that I've seen employed, you could have a simple staging network with more basic security like WPA2 PSK that allows the devices to connect to SOTI, and then you could push out the more complex certificate based production WiFi configuration information to the devices post enrollment.
Hi KlausB,
Thank you for posting on SOTI Pulse!
Has Matt's reply helped you in regard to your question?
Do you have any other questions or concerns? If Matt's reply did help, please feel free to solution the post.
Kind regards,
Technical Support Specialist | SOTI | +1 905.624.9828 | SOTI.net lDiscussion Forum | Log a Case Online l Facebook l LinkedIn l Twitter
