We are in the process of a POC project of migrating our iOS devices from a wpa2 ssid to a wpa2 enterprise cert based ssid. Using our mdm platform, we are going to send out the new profile that will contain the ssid and cert. But iOS will not automatically connect to a new network the first time...a user must tap on the network to connect to it. After that it will auto-join to it when the network is in range. But we want it to be a silent switch over with no user interaction. I consider this to very similar to how iOS devices use the 'attwifi' ssid. They auto connect with no user interaction. Any idea how? I found the carrier apn on the internet:
<key>attwifi</key> <dict> <key>AuthMethod</key> <string>WISPr</string> <key>AuthenticationRealm</key> <string>attmobilityiphone.com</string> <key>Password</key> <string>%attmd5%</string> <key>SharedSecret</key> <string>a446649326d41d87dbb8caec8caf736a</string> <key>TrustedDomains</key> <array> <string>.wayport.net</string> <string>.att.net</string> <string>.att.com</string> <string>.sbc.com</string> </array> <key>UserName</key> <string>%phonenumber%</string> </dict> </dict>
I was thinking that it could just be modified for our purposes and then pushed out as a custom profile through our mdm. Would that work?