Solved

Need help getting iPads on private Cisco wireless LAN

Posted on 2013-12-02
1
481 Views
Last Modified: 2013-12-02
Hello Experts - I need some help getting my Cisco wireless network to work with our company's iPads.  We currently have two networks, one public for guests and another which is private for our internal network.  We have a number of iPad users who VPN in over the public internet then RDP to their desktops and use OWA.  I'd love for them to be able to use the private wireless network to automatically connect them when they walk in the building so they can RDP and use OWA without the VPN.

We're using a Cisco 2504 controller and Aironet access points.  We' using RADIUS for authenticating the Windows users with the private profile which of course won't work on the iPad.  I could use some help configuring a new profile for the iPad so they can authenticate hands-off using an installed certificate.  I'd appreciate any advice, thanks!
0
Comment
Question by:First Last
1 Comment
 
LVL 45

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 39690440
You're going to need to use SCEP or a third-party MDM solution if you want to deploy certificates.  This would usually involve creating a provisioning SSID which only allows the device to connect to a provisioning URL to enroll for a device certificate.

Have a look at this Apple article regarding MDM...

https://www.apple.com/uk/iphone/business/docs/iOS_6_MDM_UK.pdf

This video might show you some useful information regarding Cisco's design guidelines for Bring-Your-Own-Device type implementations...

http://www.cisco.com/en/US/docs/solutions/Enterprise/Borderless_Networks/Unified_Access/byodwp.html

This shows how to configure a WLC/ISE for SCEP functionality...

http://www.youtube.com/watch?v=wO0hKAPBnAc
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question