Hi,
Turns out these forums are invaluable when setting up Wifi! Anyways, my issue is that I cannot get device provisioning to work correctly. My goal is to have non provisioned devices connect to "Mobile Provisioning" SSID then authenticate user via AD credentials and install certificate for Provisioned network.
Everything works perfectly up to the last step where the device switches connections and tries to authenticate using the newly installed certs. For some reason the profile that gets installed on the device appends the username with ":(certificate serial number):mdps_generic, ie john.doe:5:mdps_generic. If it did not append, then it would work! (I am pretty sure anyways).
Question: Can I remove the strig that gets added on to the user name? Or am I setting this up all wrong?
Using Aruba Controller
CP Onboard is a sub. CA to our windows CA
AD is set to authenticate users before provisioning (works)
Once reconnect to provisioned SSID our NPS server states user does not exist -> reject.
Thanks in advance for any advice on this and let me know if any other info is needed!!