Higher Education

last person joined: 2 days ago 

Got questions on how to enable mobility in education? Submit them here!
Expand all | Collapse all

MacOS 10.12 wifi using Active Directory and FileVault

  • 1.  MacOS 10.12 wifi using Active Directory and FileVault

    Posted Sep 19, 2017 11:23 AM

    Hello community,

     

    We've been putting our Macs in our domain for some time now. We use LoginWindow/System auth against our CPPM which does both machine and user auth using PEAP. Recently (I'll have to determine exactly when) the authentication events have changed.

     

    It used to be that I could watch the machine auth in CPPM when it hit the network and then the user auth once the user logged in. Now I only see the machine auth. Even though the user logs in to the machine, I never see that auth in CPPM and, consequently, they never recieve the correct network enforcement profile from CPPM.

     

    We have also recently started using filevault for ecryption. I cannot say for sure if this has happened as a result of using FV or perhaps a MacOS update.

     

    Is anyone else using a similar setup? Have you noticed similar issues?



  • 2.  RE: MacOS 10.12 wifi using Active Directory and FileVault

    Posted Sep 19, 2017 11:43 AM

    Sorry, I do not have an answer. We are currently using user-only PEAP authentication for MacOS.

    I tested login (machine & user) authentication earlier this summer but had a issue theat if a user entered an incorrect password, MacOS would still keep trying the bad password while prompting for a password. In our environment, this behavior locks the user's AD account.