Back to Customer Stories
Higher Education
1min read
April 6, 2026

A University Returns to SecureW2 to Consolidate Tools and Upgrade Legacy Systems

At a Glance
Industry Higher Education
Use Case Replace credential-based Wi-Fi with certificate-based authentication across managed and BYOD devices; consolidate existing tools
Key Result After a 20-year SecureW2 service gap, a university assembles a cross-functional team for certificate-based authentication across campus
Read the Full Story
Schedule Demo

The Challenge

A prestigious research university with thousands of employees and students relied on password-based EAP-PEAP MSCHAPv2 authentication for campus Wi-Fi. Despite its scale, the institution lacked the security of a mature public key infrastructure (PKI) and certificate-based authentication.

The environment reflected two decades of layered decisions: three mobile device management (MDM) platforms, an existing NAC platform, and a separate BYOD onboarding tool for the large transient student population. The university wanted to consolidate tools, not add another product.

They had used the original SecureW2 supplicant agent from the 2000s — a legacy product from a different era. When SecureW2 resurfaced as a market leader, the team reached out to inquire about a new service contract. SecureW2 now offers managed cloud PKI, Cloud RADIUS, and JoinNow MultiOS onboarding in one platform, addressing every need for the customer under one vendor.

The Solution

For five months, a cross-functional team spanning networking, endpoint engineering, and security conducted a multi-session evaluation and early implementation. The scope covered four workstreams:

  • Replacing EAP-PEAP with EAP-TLS for managed and BYOD devices
  • Evaluating whether SecureW2 can replace the existing BYOD onboarding tool and potentially supplement the incumbent NAC
  • Delivering certificates across three MDM platforms
  • Managing certificate lifecycle for thousands of students cycling through every year

The Results

With evaluation complete and early implementation underway, the university is moving toward a campus-wide rollout of certificate-based authentication — consolidating tools and swapping out legacy infrastructure to patch security vulnerabilities.

  • Three MDM platforms accommodated. Certificate delivery paths have been mapped for all co-managed environments.
  • Student lifecycle management planned. The system will handle provisioning and revocation at scale for each incoming and graduating class.
  • Tool consolidation under evaluation. SecureW2 is being assessed as a replacement for the existing BYOD onboarding tool and potential supplement to the incumbent NAC platform.

Learn More About SecureW2

Explore SecureW2's trust model, dive into our platform and product details or read more success stories.

Why SecureW2

Establish continuous trust with Dynamic PKI and Cloud RADIUS. Enforce access based on live identity, device posture, and risk context.

  • Passwordless authentication that can’t be phished
  • Works with your IdP, MDM, and security stack
  • Real-time policy engine for dynamic access control
Learn More
Explore the Platform

Get the essentials on the products that power continuous enforcement.

SecureW2 JoinNow Platform
SecureW2 Dynamic PKI
SecureW2 Cloud RADIUS
MultiOS for Self-Service Onboarding
Integration Hub
Knowledge Base Articles

Explore practical guidance from engineers and admins deploying SecureW2.

  • Setup and configuration tutorials
  • Integration best practices with IdPs and MDMs
  • Troubleshooting guides for PKI and RADIUS
Browse Explainers