This guide is designed for IT administrators who want to use the IEEE 802.1X port-based network access control standard to provide protected authentication for secure network traffic over a LAN or WLAN wireless network. IT administrators can distribute 802.1X settings to end users using configuration profiles in Jamf Pro.
What's in This Guide
This guide provides the step-by-step workflow required by all environments to configure the 802.1X infrastructure for macOS computers and iOS mobile devices.
This guide also provides specific workflow instructions for the various WPA2-enterprise protocols such as PEAP and TLS using configuration profiles in Jamf Pro with or without the use of Microsoft Active Directory.
Before configuring 802.1X settings, make sure you are familiar with the following concepts in the Jamf Pro Administrator's Guide:
For more information, see the following technical papers:
Enabling Jamf Pro as SCEP Proxy (helpful for non-Active Directory workflows)
In addition, make sure you are familiar with the following concepts:
Active Directory Domain Services
For more information, see the following documentation from Microsoft: Active Directory Domain Services Overview
Active Directory Certificate Services
For more information, see the following documentation from Microsoft: Implement and manage Active Directory Certificate Services
RADIUS servers (Network Policy Server)
For more information, see the following documentation from Microsoft: RADIUS server
For more information about 802.1X, see the following documentation from Apple:
Connecting Apple devices to 802.1X networks section in Apple's Deployment Reference for Mac
The following topics in Apple's Mobile Device Management Settings:
Connect to an 802.1X network on Mac in Apple's macOS User Guide