Go Premium for a chance to win a PS4. Enter to Win


Deploy 2 certificates to wireless clients

Posted on 2016-11-15
Medium Priority
Last Modified: 2017-09-02
We have a sonicwall NSA240 with clients authenticating via browser NTLM.

Any devices connecting install a CA certificate to ensure https. We also have a lot of students connecting (with BYOD)  and would like to push a second cetificate to clients not on the domain.

Is there any way to do this?

Many thanks in advance
Question by:matedwards
  • 2

Accepted Solution

Antzs earned 2000 total points
ID: 41888973
For BYOD which are not joined to the domain.  I don't think there is a way to push the cert to them.  The best you can do it to place the cert somewhere accessible and send out a notification to all BYOD users to download and install the cert themselves.

Author Closing Comment

ID: 41890488
Thanks Antz.. I thought so.

Thanks again for your help
LVL 27

Expert Comment

by:Blue Street Tech
ID: 42262673
Cert based deployments carry a lot of management behind them because not all devices support them. Have you considered having users w/BYOD devices SSO authenticate via RADIUS upon domain login. You can enforce an encrypted connection through policies defined in the NPS server and also block connections that aren't secure or don't meet the criteria.

Author Comment

ID: 42279539
Big thanks BST..

I wanted to push a certificate to BYOD clients so that our filtering system can monitor/filter https web traffic.

Our filtering provider effectively does a valid man-in-the-middle attack to monitor https porn, gambling, hates sites.

Would your RADIUS suggestion do the same.?  

Many thanks again

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Multi-source agreements are important because they set standards that all manufacturers should follow to ensure that devices are compatible with multiple vendors. The multi-source agreement (MSA) is an agreement that establishes how multiple vendors…
This program is used to assist in finding and resolving common problems with wireless connections.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Suggested Courses

972 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question