How To Setup RADIUS Authentication in Jamf Pro
Prerequisites
- Registering the application in your tenant
- Creating Cloud Radius Instance
- Being a Subscription Owner or Network Administrator
- Being an MDM Administrator.
Introduction - How to Setup RADIUS Authentication in Jamf Pro
There are three ways to setup RADIUS authentication in Jamf Pro, one is using EAP-TLS (Certificate Authentication), another is using Your Entra ID Password with EAP-TTLS PAP, and the last one (which does not require Jamf Pro setup) is using PEAP-MSCHAPv2 Password Authentication using the RADIUS credentials created by your users (you can see how to enable self service user management using their Entra ID credentials). We recommend using EAP-TLS as it is more secure (and magical to the users) and does not require passwords.
How To Setup Entra ID Password Authentication in Jamf Pro
- Go to your Jamf Pro portal.
- Go to Network
- Network Interface. - Wi-Fi
- SSID: <Your SSID name; must match exactly including capitalization>
- Security Type: WPA/WPA2 Enterprise
- Protocols - Accepted EAP Types: TTLS
- Username - $EMAIL
- Inner Authentication: PAP
- Trusted Server Certificate Names: enter the IP address of your Cloud RADIUS instance
Now when the user connects to the Wi-Fi network, they will be prompted for their Entra ID password.