Network Management

 View Only
last person joined: 2 days ago 

Keep an informative eye on your network with HPE Aruba Networking network management solutions
Back to discussions
Expand all | Collapse all

Android 2020 11 certificate validation and UAM/MSM

This thread has been viewed 0 times

  • 1.  Android 2020 11 certificate validation and UAM/MSM

    Posted May 27, 2021 04:48 PM

    Recently new Pixel android phones on 11 have not been able to authenticate to our Wifi system. The new version forces certificate validation and this seems like it may be the issue.

    Setup is MSM765 controller using IMC as the radius server, MSCHAPv2. Our AD servers are configured as LDAP servers in the UAM access server setup. The root certficiate is from our AD domain, the imc server certificate is issued from that.

    We would get the trust warning as the internal domain is not a trusted root CA for non-windows devices for the server certificate IMC is providing and once trusted it functions as desired.

    Do we need to provide the AD root cert to the clients or change the IMC side to a trusted commercial cert chain?


    #certificate
    #wifi
    #uam


  • 2.  RE: Android 2020 11 certificate validation and UAM/MSM

    EMPLOYEE
    Posted Jun 02, 2021 05:03 AM

    Hello Neil,

    I think you've already outlined the two possible solutions in your question. If it's not a problem for you to install the CA's certificate as a trusted root cert on the devices, then you can go with that. On the other hand, if you can't install the cert as trusted on the devices in advance (ie. BYOD scenario), then you need to make sure you set up a trusted commercial certificate.