Check
this blog. It's old but still accurate. The recommendation is to use a private PKI for your RADIUS server certificates, as, you have noticed, automatic trust is not working anyway with a public RADIUS cert.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Jun 03, 2021 02:17 PM
From: Gary Naeger
Subject: Certificates, Android 11
With Android 11 and update coming out Android devices will loose the ability to trust/ignore a certificate, I'm sure Apple will follow close behind. Our clearpass server has a valid public cert and our radius server does as well. why won't the devices trust the cert?
------------------------------
Gary Naeger
------------------------------