Setting up an WPA2-Enterprise SSID to utilize Meraki Systems manager (Sentry) to provide authentication for the ssid. Have it working fine but I'm having an issue with the network not connecting before the user logs in. I can manually connect the network before logging in and everything works fine but on log out or reboot I have to connect before logging back in.
This is a Windows environment.
That will be because the certificate is a "user" certificate. The certificate is used to authenticate to the network.
Until someone logs in the machine does not have access to the user certificate to authenticate. As you can imagine, it also can't guess who will be logging in.
Is there a better way to set up the SSID? Right now the main prod network is just PSK. I want to move it to a more secure network with the network login pushed out via the system manager if possible.
The Meraki Sentry approach is very secure - and easy.
After that, if you have Active Directory then moving to WPA2-Enterprise mode is best. But there is a lot of work getting it setup.