This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 41%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
We have a wifi network which is secured with PEAP. We have rolled out the root Cert from our CA, as it is the issuer of the certificate used to protect the PEAP wifi connection.
We created a trusted root certificate configuration profile and applied it to all our android devices. We can see that the configuration is deployed to the majority of our Android clients.
However android devices still fail to connect to the Wifi network.
Then we created a Wifi configuration profile for that network, and pushed this configuration to a test group. The Configuration is not be applied, with error 942518331.
I have checked the OMADMLog files, but i do not find anything useful.
The only thing that is missing, which i think might be the issue is the OCSP. I guess although android has the enterprise root cert deployed, it cannot validate the cert as it fails to retrieve the CRL's (published only in AD). Therefore it fails to validate the CA's cert, and therefore fails to trust the PEAP Certificate.
Still no idea why the wifi configuration profile is failing.
@Killerbe Thanks for posting in our Q&A. To clarify this issue, did you add the root certificate to this wifi profile?
Based on my research, I find that someone has this similar issue.
If this issue still exists, it is needed to check more logs from backend. With Q&A limitation, Q&A is not the good channel for such log analysis case. So, it is suggested to create an online support ticket to get more help. Here is the support link:
https://docs.microsoft.com/en-us/mem/intune/fundamentals/get-support
Thanks for your understanding.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Yes, the root certificate is added in the profile, as well as the DNS name of the NPS server (which is also represented in the certificate of the NPS server).
Yes, the root certificate is added in the profile, as well as the DNS name of the NPS server (which is also represented in the certificate of the NPS server).
@Jurgen De Greyt Thanks for your update. However, there is no helpful information I can share with you. Please try to create an online support ticket to get more help. Thanks.