Workspace ONE - Creating an Eduroam Profile for macOS

This document describes the process of creating a profile in Workspace ONE that configures a macOS device to join eduroam without additional setup needed from the user.

Notes about this profile

  • Users will be prompted for a username and password upon connecting to Eduroam for the first time; these should be entered in the format '[NetID]@wisc.edu' and '[NetID password]'.
  • Deploying this profile to users that already have an Eduroam connection will disconnect them from the Eduroam SSID and require them to re-enter their NetID password to reconnect.
  • Users with administrative rights will be able to remove the Wi-Fi profile from System Preferences if desired.

Creating the profile

  1. Navigate to Resources > Profiles & Baselines > Profiles.
  2. Select Add > Add Profile > Apple macOS > Device Profile.
  3. Name your profile & give it a description.
  4. Go to Network and select Add.
  5. Configure the following settings:
    • Network Interface: Wi-Fi
    • Service Set Identifier: eduroam
    • Auto-Join: checked
    • Security Type: WPA/WPA2 Enterprise
    • Prevent MAC address randomization: checked
    • Use as Login Window Configuration: checked
    • Protocols: PEAP
    • Use Directory Authentication: checked
    • Trusted Server Certificate Names: login.wisc.edu
    • Allow trust exceptions: checked
  6. Click Next.
  7. Use the assignment page to choose how to deploy the profile.
  8. Click Save & Publish.