Help

Automatically trusting certificates WITHOUT prompts?

EmDee
New Contributor III

Posted on ‎09-11-2018 01:49 AM

Hello all,

At my workplace we have changed out wifi authentication, it now requires a certificate before allowing someone to connect, this has broken my login screen wifi profile, that now no longer provides wifi connection at the login screen for authentication

I think this is because it requires the new certificate to be accepted manually on all machines upon connection.

The problem is - I have the certificate, and I have pushed it to every machine - but it is untrusted, and in order to connect to the wifi, you have to manually select it, enter credentials, get prompted for the cert, trust it, and then enter the user password (not admin) and then you can connect

Is there any way around this?

Can I automatically trust the cert on every machine without having to prompt?

0 Kudos
Reply
2 REPLIES 2

AVmcclint
Honored Contributor

Posted on ‎09-11-2018 03:59 AM

If you're pushing the certs via the 802.1x profile payload, you should be able to mark them as Trusted in the Trust tab within. (it's not very obvious)
8a9a5565483d4ce783f606bce2f264df

0 Kudos
Reply

maiksanftenberg
Contributor II

Posted on ‎09-12-2018 01:48 AM

If this goes to the system keychain for example you can use the following:

security add-trusted-cert -d -r trustRoot -k "/Library/Keychains/System.keychain" "path to the profile"

But you also can do this for the users keychain.

0 Kudos
Reply