Apple clients (iPhone and iPad) will by default ask the end-user to verify the RADIUS server certificate. This happens during the initial connection and when the certificate has been changed. Using a trusted certificate doesn't change this. The only way to get rid of this, is by using a MDM or on-boarding solution so that the device is informed about which certificate it can expect. That way you will see the green "trusted" icon during the initial connection instead of the "unexpected" red one.

Do make sure that all of your RADIUS servers are using the same certificate to start with. When more BYOD devices are going to use your infrastructure it might be a good idea to not use your own PKI for the RADIUS server certificate. Some clients don't allow a RADIUS server certificate signed by an untrusted CA, same goes for using a wildcard certificate (wildcard as SAN is fine in my experience).

Last but not least, you might want to inform your end-users about expected client behavior upfront. They should check the serial number of the presented certificate to make sure nobody is performing a men in the middle attack, however that might be wishful thinking depending on your end-users.

Please rate useful posts... :-)

Yes, its expected to happen initially and upon cert change. It's not expected to happen randomly after accepting the cert and no changes have been made.

Also when it does prompt you, it shouldn't tell you it's expired when it really isn't.

All our ISE policy nodes do have the same EAP cert.

Same thumbprint and serial number.

Even if we ignore the repeated prompt issue, it's still bizarre that a device would mark it expired even though the current date falls within the "not before, not after.." range.

I think some screenshots will help. These screenshots were taken from an iphone at the same time last month.

5 years validity?
That's very uncommon, because certificates, starting somewhen 2018 shouldn't anymore be valid more than 2 years.
See for example here: https://knowledge.digicert.com/generalinformation/INFO4906.html
Maybe that's why the certificate is marked as invalid.

Also check the following requirements (source https://discussions.soti.net/kb/ios-12-devices-fail-to-enroll-with-error-an-ssl-error-has-occurred-and-a-secure-connection-to-the-server-cannot-be-made):
The SSL server certificate must meet the following requirements:
· Be signed with one of the following types of keys:
o RSA key with a length of at least 2048 bits
o ECC key with a size of at least 256 bits
· The certificate’s hashing algorithm must be SHA-2 with a digest length, sometimes called a “fingerprint,” of at least 256 (that is, SHA-256 or greater)

----
I assume the intermediate / root certificate which are possibly implemented in the certificate are still both valid?

That blurb from apple appears to come from this whitepaper they've published: https://www.apple.com/business/site/docs/iOS_Security_Guide.pdf

This is a SHA-1 signed cert which contradicts apple's requirements... however it specifies the signing requirements start with IOS-11 (this problem started with IOS12 for us it seems), and these are specific to browser TLS connections to a web server - I'm not sure if the same thing applies to PEAP/MS-CHAPv2 ? Even if it does, this is a trust once and done thing.

Root and intermediate certs are still valid as well, until 2023.

Whenever you are roaming from AP-1 to AP-2 and if you are using 802.1x, a brand new authentication happens and therefore depending on your certificate implementation for EAP-TLS or PEAP, the untrusted certificate warning would show up.

On Windows devices that does not happen because the profile you have configured probably is NOT validating the server certificate OR the intermediate and root CA that signed the cert is part of the TRUSTED CERTIFICATE AUTHORITIES DB on Windows. I mean:

Another question, are you using a PUBLIC CA to sign the cert or an Internal CA Server?

Let me give a try, I will push from my MDM a cert into my IPAD (currently running version 11) once I update it to version 12. I will give you a feedback in 1 hour approx.

Based on your initial findings, looks like SHA-1 is not accepted by Apple devices running version 12.

Maybe ios11 gives error but tolerates once hitting accept - but in ios12 it doesn't tolerate and makes you repeatedly have to accept?

I am actually interested on this post because we have over 40K Apple devices running EAP-TLS with the certificates deployed using MDM. That certificate is using SHA-1 because our internal CA Servers have not been moved to SHA-256 yet. Imagine if all the devices are suddenly update to version 12 and I start having those issues. I will get back to you as I said before. Give me a chance for testing.

Could you please post the ISE message when you get the repeated error?. I am wondering if something is registered on ISE.

The ISE auth succeeds... once you hit trust on the client device everything goes through normally.