Aruba MDAC provisioning on iOS devices

By ozerdo posted Nov 14, 2011 06:20 PM


Question AOS & Amigopod 3.3 - Have Guest Portal and auth working perfectly.

Attempting to perform Mobile Device registration, built CA, have page load correctly to install "Root CA" on IOS device, click install on IOS device to load CA certificate, then IOS device will not associate with ANY WLANs until I remove the profile and reset network settings.

Has anyone else run into this problem?


Here are my lessons learned.
- CA Cert must be built on Amigopod,
- If intending to do TLS/EAP Termination on "MDAC" device ESSID, you'l want to generate a CSR from the controller, and upload the CSR and generate the CERT on the Amigopod.
- Install the CA Cert as well as the controller CERT on the controller, then modify your dot1x auth profile (advanced tab) to utilize the correct CA and server cert.
- I had attempted to have the "Amigpod" as the dot1x server in the AAA profile, and had mistakenly forgot that the "username" auth would still go to our IAS/NPS resources.


Once I had those few items under my belt, the rest of the MDPS / MDAC works perfectly.