Sierra 10.12.5 breaks 802.1x

I updated one of our test Macs to 10.12.5 this morning and quickly discovered that 802.1x network connections no longer connected. We're using Active Directory computer certificates to authenticate on Ethernet and WiFi. The 802.1x configurations are handled by Configuration Policies in JAMF Pro (aka Casper). Everything has been working just fine up until the 10.12.5 update.

After I discovered network connections were broken, I rebooted with no change. I went to System Preferences > Network and clicked on Connect and after nearly a full minute I was presented with a dialog box asking me to validate a certificate. After I validated it, then I was able to connect.

THE PROBLEM is that admin authentication is required to validate the certificate. NONE of our users have admin rights. We have many users in remote locations and the only way I can interact with them is via ARD. but if they can't get on the network, then I can't use ARD to fix the problem. Do you see the problem you've created, Apple?