Weve just started being notified of clients not connecting the the byod ssid, and have learnt its due to the fact that their certs have expired. It appears that the email notification mechanism for re-provisioniing may not have been configured conrrectly.
The only way I have found to rememdy this is to clear the device from CP, and also get the user to remove the installed CP policies from their device, then re-onboard.
I was hoping I could somehow filter all of the expired certs and mass delete them, but cant find a way to do this, so imagine Im now going to have to do each one manually, and also notifiy each user of what they need to do.
Ive been advised that we can set the cert deletion time down to 1 week, but I fail to see how this helps... surely you want to delete it as soon as its expired?
What is the "normal" process for a user who's cert is expring? Do they still ahve to manually remove the installed CP policies, or does the re-provisioning process do this bit anyway?
Not sure of the most efficient way to clear up the expired certs and get users to reproviosn and suspect I am going to have to do each one by one.