We're trying to do EAP-TLS for all of our corporate devices. Windows stuff works fine. Macs are a huge PITA. If you get all the certs on the device and manually connect to the SSID, choose your cert, you get on.... but it prompts you for access to the keychain every single time it has to reconnect. Unacceptable for us. I'm told the solution is to use a Wi-Fi profile. So we're trying this out from AirWatch... but it will not work. We cannot chain together the cert properly to NOT get a TLS error on the ClearPass side.
Any tips or ideas to try? I'd appreciate it.
Error on CPPM when trying to auth from profile:
EAP-TLS: warning alert by client - close_notify
eap-tls: Error in establishing TLS session
thanks.