Hello guys!
I got a WiFi dedicated for company smartphones, it uses WPA2-PSK and I would like to get it more secure than just typing password.
My idea at this point is to generate a "global" certificate, install it on smartphones and use RADIUS to check it. But...
1) Is it possible to use both methods simultaniously? Not like checking WPA2-PSK and WPA2-EAP on Mikrotic AP's means "one OR another" but "one AND another"? WPA2 password is configured on AP's so at this point for this wireless profile access is granted on AP site.
2) If answer for above is "yes" - does it mean that I don't need to forget WiFi SSID on all mobile devices and add/remember it again?
Maybe someone did something similar for smartphones and could share another solution (I mean "secure WiFi connection for company smartphones")? All devices are added to MDM system so I can globally "do some things".
I got a WiFi dedicated for company smartphones, it uses WPA2-PSK and I would like to get it more secure than just typing password.
My idea at this point is to generate a "global" certificate, install it on smartphones and use RADIUS to check it. But...
1) Is it possible to use both methods simultaniously? Not like checking WPA2-PSK and WPA2-EAP on Mikrotic AP's means "one OR another" but "one AND another"? WPA2 password is configured on AP's so at this point for this wireless profile access is granted on AP site.
2) If answer for above is "yes" - does it mean that I don't need to forget WiFi SSID on all mobile devices and add/remember it again?
Maybe someone did something similar for smartphones and could share another solution (I mean "secure WiFi connection for company smartphones")? All devices are added to MDM system so I can globally "do some things".
Statistics: Posted by McGremlin — Sun Dec 03, 2023 10:41 pm