IOS 5 can't connect to WPA/WPA2 Enterprise Wireless Network

Unfortunately, changing the first letter of my password to a lowercase letter did not fix the problem for me. I can connect to a WPA2 Enterprise network, but the connection is lost after about 15-30 minutes, and my iPod will not automatically reconnect. I have to re-enter the data as an "Other network". My iPad, also running 5.0.1, has the same problem.

Although there are probably server side settings to resolve this, the quick and reliable fix is to use the iPhone Configuration Utility to build a profile and send it to your phone. It is easy and has worked for everyone at my office that has tried it. The utility is a free download for Windows or Mac and once its installed, you just run it and click on "Configuration Profiles" from the list on the left.

You can fill out the General tab with whatever values you want and leave the Security set to "Always"

Then you can scroll down the list to Credentials and click the + button. It will come up and show you a potentially long list of Certificates. If you can get the name of the CA Certificates your Radius server uses from your Network Admin, you can then choose them from the list and add them one at a time. In my case, the Admins told me they didn't use Certificates (probably not true), so I just picked a Cisco Root Certificate and another intermediate client authentication one. I actually do not think these are really used by my server, but it could be different for you. Another way to find them is to click on Window and then Certificates and that lets you choose according to type, so you can click on "Trusted Root" and sort by issuer and find the Cisco root and then in the top drop down choose Client Authentication and click the Intermediate Certification Authorities tab and find an intermediate client authentication certificate. Again, I'm not sure this is totally required, but you should be able to just add the Cisco root and see what happens.

After that, you just go to the WiFi tab and fill in your network ssid, check "auto join" and "hidden network" and choose security type WPA/WPA2 Enterprise. For Protocols, I chose all of the LEAP, PEAP and EAP options but if you know differently about your network, you might use TLS or TTLS or you could just check them all to be safe, since it allows you to choose any combination.

In the Authentication tab in the WiFi area, just put in your username and password and leave "use per connection password" unchecked.

Then go to the Trust tab and you should see the Certificates you chose and you can check the boxes for them and then click the + under Trusted Server Certificate Names and it will add the value "Trusted Server Common Name" Click "Allow Trust Exceptions under that, and that's it.

You can then choose export and keep the default signing type and it will pop up an explorer window and let you choose the location. Desktop is handy. Once its saved there, just mail it to yourself and open it up in your phone. When you click on the attachment, it will prompt you to install and you are done. It seems to work best the first time if you toggle wifi off and then on again, but after that it should auto reconnect when it times out or you leave and re enter the building. You will need to modify and reload the profile whenever you change your password, but you would have to do that in the phone anyway, so its not much more trouble.

Hope this helps and outside of the Certificate issue, I would be surprised if it didn't.

Good Luck

mheidem

mheidem: can you give me any hints as to which certificate I should choose? There's no Cisco certificate in my list, and there's no way I'll be able to talk to anyone in the IT department who even understands the question, let alone provides an answer. I've tried two so far, and they don't work.

Well I have some similarities to this problem and some differences. I have two 4s 16gb from both ATT and Vzw out of the box with latest ios5 and an iPad 2 also with latest ios5. All three connect to corporate enterprise WPA using a config file downloaded via the config utility. They all connect and stay connected 90% of the time...through sleep mode etc. I now have a new 4s 64gb and it can connect ok, but it can't stay connected through a sleep/lock, when entering/exiting building or within 15-20 min. It will drop down to the unprotected wifi 100% of the time, forcing me to go into the network list and manually choose the protected network again. I can only get my work email on the protected network. If I forget the unprotected network it will just use 3G and not reconnect to protected unless I again manually go into the wifi and select it.

For me it seems to be different between different versions of the 4s only.

This worked well with the Network we use. Thanks for the suggestion. 🙂

It may take some trial and error. I think the things you need are a root certificate and an Intermediate Client Authentication one. if you sort using the Window menu, there are probably not that many, so you can just keep adding. Also, if your PC authenticates on the same server, you might be able to track it down that way...

good luck

What ended up working for me was to turn passcode lock on. It's a requirement at our work. My other devices had it turned on but my phone didn't. Once on, it maintains the connection.

Here is the deal with me...I had WPA PSK and WPA2 Enterprise running. PSK would be fine, then WPA2 Enterprise asked for a password. not good. So I downloaded the Iphone utility and created a profile for the SSID that was using 802.1x or peap, whatever, I chose the ANY Enterprise and then PEAP ..I added the username, and the passowrd..Now when I am in the area I connect auto matically, you will see the Auto Join check mark and the Joinif not broadcasting bxo...Save the profile and install on your phone, it will not mess with anything else. when you click install, your phone will ask for accept the profile and install....try it and let me know..it works for me..My guess is that the 5.0.1 software is using ANY for encrption etc, and so it defaults to WPA Personal, and that could be the Cisco issue. but not for sure. See ya

If anyone is having issues try using Authentication with the domain\user as the login name. That worked for our WPA2 Enterprise network.

Seems like there are multiple issues with this type of connection with a few different fixes.

Thanks! Your method works for me. I guess choosing "any enterprise" is the key.

I just updated my IOS devices to 5.1 and that fixed the problem. No more re-login wend connectiing to my Cisco Wifi Controllers !!!

Hi there,

I'm having big troubles connecting a "new iPad" (3rd gen) to my campus wifi (wpa enterprise, ttls mschapv2, peap). Other devices (android, Linux, win..) work fine, other iOS devices (iPad 2) work fine. IPad 3 connects but stops exchanging data after 2 seconds - after loading half a web page. Wifi is still connected, but no data flow, and safari times out.

I tried the "configuration utility" and created a profile - no solution... Keeps connecting, but no data exchanged.

My guess, right now, is that it's some kind of certificate problem. The page containing the specifics of the wifi network is here http://www.unibo.it/Portale/Ateneo/Strutture/Strutture+di+servizio/80080/AlmaWIF I/default.htm (also in English), and the certificate itself is here http://www.unibo.it/NR/rdonlyres/56FF6243-1917-4D29-956F-4E43256DFD7C/239914/tha wte_Primary_Root_CA.zip .

When I connect to the network the ipad says something about the certificate being untrusted.

Any ideas?

Thanks

After much trial and error, and our network engineer trying different things on the network, we found that on the 4S and the new iPad we needed to reset network settings. This took care of it and we were able to connect to unpublished WPA2 Enterprise network.

We also tried with a 3GS and had the same problem, and it has iOS 4.3. Did the same thing (reset network settings) and after the 4th time of tapping Join it asked if we wanted to accept the certificate. Now it works.

Message was edited by: LuisRocha

Updating my iPod to 5.1.1 also fixed this problem for me. I haven't tried my iPad yet. I was hesitant to update because I would lose my jailbreak, but I wasn't really using any Cydia apps anyway. Plus, iBooks also works now.

What bothers me the most is that it's obvious that this was a bug in 5.0, but we got no acknowledgement from Apple that they screwed up.

For information I had some issues with the apple devices and it is resolved since I activated the option "fast SSID" in the Cisco wireless controller.