Configuring PEAP authentication

If your organization implements PEAP authentication, Wi-Fi enabled BlackBerry devices must authenticate to an authentication server before they can connect to the enterprise Wi-Fi network.

PEAP authentication requires that BlackBerry devices trust the authentication server certificate. To trust the authentication server certificate, BlackBerry devices must trust the certificate authority that issued the certificate. A certificate authority that the BlackBerry devices and the authentication server trust mutually must generate the certificate for the authentication server.

Each BlackBerry device stores a list of explicitly trusted certificate authority certificates. BlackBerry devices that use PEAP authentication require the root certificate for the certificate authority that issued the certificate.

To distribute the root certificate to BlackBerry devices, you can use the certificate synchronization tool in the BlackBerry Desktop Manager. You must configure a Wi-Fi profile to provide the user name and password for authentication.

For more information about how the BlackBerry Enterprise Solution supports PEAP authentication, see the BlackBerry Enterprise Server Security Technical Overview.