I have a Windows 2003 IAS RADIUS server installed for WiFi in the office. It is configured to sync with Active Directory so it uses Username/Password to Authenticate you to the network. I also configured it to require each domain computer to install a DER x.509 certificate. I have to install this certificate manually going into the Wireless Connections Advance Settings and configure PEAP.
My questions is, my iPhone can see the AP and when it asks for my credentials (username/password), it automatically sees that it needs a certificate. I click the install certificate and bamm I'm connected to the network. Why is it so easy for the iPhone to get the IAS cert installed when I was thinking that this is another layer of security to not just allow the cert to be distributed so freely. Is there a way I can prevent this?
Thanks in advance!