Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

Empty certificate on iPhone iOS 7 when password request should be done


We have an issue where MobileIron MDM joined iPhone clients recieves an empty certificate instead of new password question, when they have changed the domain password from their PC clients.
We also have this issue on iPhones that are not joined to MobileIron but there it seems to be more intermittent.

- A client is requested to change his password in the windows domain.
- When he later on try to connect to the wireless infrastructure with the same user id on his iphone he receives an empty certificate. And when he accept it the phone tries a couple of times and then stops instead of a request for new password.

Wireless infrastructure
Cisco WLC 5508 with (tested with 7.0.235 and 7.3 with the same result)
AP's 3502
Encryption WPA2 AES
Authentication 802.1x PEAP MS-CHAPv2
Microsofts IAS

And so far we have only seen this on iOS 7 devices. iPhones and iPads. No issues with Android.
Its possible to force this problem on iPhones that are not joined to MobileIron by cancel the password request and then try to connect to the network again. Then it will try to connect without success and after a while the empty certificate is shown.

Lot of things here that can cause the problem I presume..
But if anyone have any tips it would be much appreciated!



CreatePlease to create content