We are looking to implement EAP-TLS authentication for our wireless environment and want to know if Casper integrates with a Microsoft PKI/CA. We need to know if it is possible for Casper to automatically obtain a user certificate from the Microsoft PKI/CA and then push the certificate out to MAC devices. Additionally, does Casper have a built-in CA that can be utilized to push user certificates to MAC devices? If the built-in CA to Casper is utilized is it possible to configure it so that the user certificate private key is not exportable?
Question
EAP-TLS Authentication
+5
+18Edit: nevermind, I just noticed you are using user certs for wireless, which I have no experience in. In any case, you will want your own CA to issue those certs.
+6Check out this article.
https://support.apple.com/en-us/HT204602
We just went to this approach. Mac clients were easier than wintels.
We also used JAMF Pro Services and had it done in less than 2 1/2 hours.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.