Hello,
We have CPPM. Users onboard to BYOD as as part of that process certificates are installed for connectivity to the BYOD network. Users authenticate one time using their AD credentials for the registration process. We have posted documentation for users with various device examples for registering, Complete with flashy screen shots and everything :-) Feedback from some folks indicate that the registration process is simply too cumbersome and "takes too long" and is too "complex".
1) Some folks don't want to authenticate and install certificates on their device, they think we are watching them. I know we can't fix this paranoia specifically. But try to make them understand the certificates are a way that you don't have to keep reauthenticating on your device (ie put in your username and password repeatedly) is a good thing.
2) Some folks claim the one time authentication process is just too darn difficult and they either give up before they even begin or can't get thru it. Is there a way to dumb things down?
3) We might eventually expand BYOD to elementary schools, and the thought is that the current registration process might be too difficult for younger folks to handle.
We would like to continue to have visibility / accountablity for users and not just have a wide open network.
So what would be a happy compromise, a way to be diplomatic to the concerns? Are there other options than what we do now?
A more seamless registration but still have that accountability piece that CPPM helps provide?
Thanks for ideas!
Sarah