Hello, I'm trying to setup EAP-TLS to have a single certificate on all our mobile/devices laptops with machine or username AD authentication (based on whether it's an AD computer or a mobile device (ios) not in AD).
I have EAP-TLS working and can connect when I disable authentication in my EAP-TLS Authentication Method. But when I enable authentication in the method it pulls the CN of the certificate to validate against and not the machine name or username/password entered. My test client is a windows 10 laptop. Additionally because of this my client logging in Airwave shows the CN name as well and not the actual AD computer name or username.
Is this possible or do I need separate certificates for each device?