01-15-2014 01:42 AM
We are working on design a network that allows our corporate-owned mobile devices (such as iPhone) to connect securely.
We wish to use certificate-based authentcation (EAP-TLS) for this, but in addition to that, we also require the user to enter a pin code when connecting to the network as an additional level of user security.
I know that CPPM can provide the EAP-TLS part, but can it also provide for the PIN authentication as well, or would something else be required for this ?
01-15-2014 03:53 AM
You would need a supplicant installed on your iPhone to accomplish this in the traditional sense. If you use ClearPass with Onguard, you can both (1) distribute a certificate to the iPhone and (2) enforce a pin code for the phone itself, so that the user must enter it to unlock the phone.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs