Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
355
Views
2
Helpful
3
Replies

BOYD with IOS

Saeed Abd Elhalim Hamada
Spotlight
Spotlight

‎01-28-2026 05:19 PM

Dear all , 

i have problem with BOYD with IOS 

i implement BYOD with Dual SSID  with mscap not tls (customer need 😁)and in the authiz policy i put condition the endpoint must be in the group called registered device .

the problem is when the user try to reg for the guest SSID he regi with mac address than when he redirect to the new SSID he use another mac address that not reg .. i  solve this problem by edit the setting of the phone to use off in the mac address ..

is there any another solution i can make from ISE side ?

SaeedAbdElhalimHamada_0-1769649419238.png

 

0 Helpful
3 Replies 3

Ambuj M
VIP
VIP

‎01-28-2026 07:41 PM

I know your mac randomization is answered but on a separate note, won't recommend doing BYOD, it's not as smooth as it used to be because of all added security, I did it recently for a customer and users had to go through about 20 clicks before they are issued a cert and can connect, back in the day it use to be about 6 clicks. 

-hope this helps-

ahollifield
VIP
VIP
In response to Ambuj M

‎01-29-2026 08:11 AM

Exactly this ^ Never attempt BYOD in 2026. OS vendors have (correctly) implemented security controls that essentially make BYOD on modern endpoints a non-starter. Use an MDM instead.

0 Helpful
Customers Also Viewed These Support Documents