Hey @giovannip This can be achieved by applying a GPO to domain-joined devices that issues them with a certificate through your internal CA for wireless. You could then configure the WPA3-Enterprise with Radius and on the Radius server have the certificate be used as the authentication method. You should also add username/password to ensure only employees are connecting from the machine in question. This would help ensure only domain-joined clients can authenticate/connect to the SSID.
... View more
