The Challenge
For one financial operations platform, a return-to-office mandate meant a race against the clock. The corporate network needed the ability to handle a surge in concurrent connections securely, but the existing password-based Wi-Fi authentication model was insufficient for handling sensitive data.
Additionally, the internal PKI had become difficult to manage, and issues with the existing network access control (NAC) deployment had drained engineering resources. Building out the existing infrastructure to support certificate-based Wi-Fi for over 1000 devices was not an option. With Windows devices running on Intune and Macs running on Jamf Pro, the company needed a clean deployment through both mobile device management (MDM) platforms without profile conflicts.
The Solution
After a demo, the customer knew that the SecureW2 JoinNow Platform was the answer they needed. The team configured the SecureW2 Dynamic PKI and set up SCEP certificate enrollment profiles in both Intune and Jamf Pro. A pilot group of 50+ devices validated the enrollment flow across both platforms before scaling.
Rather than deploying certificates and Wi-Fi profiles simultaneously, the team pre-staged certificates on all devices, preventing security gaps. Windows devices required the SCEP certificate to land before the Wi-Fi profile cutover to avoid enrollment interruptions. For the Mac dual-profile conflict, they used Jamf smart groups to control deployment timing.
With certificates pre-staged across the fleet, the team pushed the new Wi-Fi profile configuration. The results came fast: 1,000+ Jamf SCEP enrollments completed and zero failures.
The Results
- 1,000+ successful enrollments, zero failures — the Jamf SCEP profile completed across the Mac fleet without a single failure on rollout day
- Passwords eliminated from corporate Wi-Fi, replaced with certificate-based authentication
- Scalability enabled to extend certificate-based authentication to Zoom Rooms, IoT devices, and conference room equipment.