Configure WiFi settings on your devices.

General: Network

Name The name of the network which the device should connect to. Also is the name of the Wireless Policy.
Auto Join Network Selecting this will enable the device to auto connect to this network.
Hidden Network Select whether the network is hidden or not.

General: Security

Type The security protocol currently being used on the network. You can select WEP, WPA/WPA2, WPA3, Any Personal, WEP Enterprise, WPA Enterprise, WPA3 Enterprise, Any Enterprise, or None.

If you select an enterprise security protocol, the following configuration sections are displayed.

In the Protocols section, you can select the following accepted EAP types:
  • TLS: Transport Layer Security provides end-to-end communications security over networks.
  • TTLS: Tunneled Transport Layer Security provides a secure connection tunnel to authenticate the client.
  • LEAP: Lightweight Extensible Authentication Protocol provides secure authentication.
  • PEAP: Protected Extensible Authentication Protocol encapsulates the Extensible Authentication Protocol within an encrypted and authenticated Transport Layer Security tunnel.
  • EAP-FAST: Extensible Authentication Protocol - Flexible Authentication via Secure Tunneling provides session authentication.
  • EAP-SIM: Extensible Authentication Protocol - Subscriber Identity Module provides authentication between the client and the network.

In the Authentication section, you can set the following options:

Username Enter the username here.
Note: Macros can be used to supply the username.
Password Enter the password required for the provided username.
Use Per-connection Password Select this option to request a password for each connection and send with authentication.
Use Identity Certificate When a certificate is imported through the certificate manager, you can select it here. See Certificates for more information.
Other Identity Enter an externally visible identification if using TTLS, PEAP, or EAP-FAST.
Minimum TLS Version Specify the minimum TLS version to be used with EAP authentication. (Available in iOS 11.0 and later and macOS 10.13 and later.)
Maximum TLS Version Specify the maximum TLS version to be used with EAP authentication. (Available in iOS 11.0 and later and macOS 10.13 and later.)

In the Trust section, enter the trusted certificates required for authentication.

Password Enter the password required to connect to the network.


Proxy settings are not supported on iOS devices enrolled with user enrollment add devices rules.

Proxy SOTI MobiControl offers proxies to be automatically or manually configured. If Automatic is selected, enter a URL in the URL field. If Manual is selected, you must enter data in the Proxy Server, Username, and Password fields.
URL If Automatic is selected as the proxy setting, enter the URL of the proxy here.
Proxy Server If Manual is selected, enter the name of the proxy server here.
Username If Manual is selected, enter the username for authentication here.
Password If Manual is selected, enter the password here.


Enable Select this option if the network has Hotspot 2.0 enabled.
Domain Name Domain name of access point which is used in the place of SSID for Hotspot 2.0 access points.
HESSID Homogeneous Extended Service Set Identifier (HESSID) is used to uniquely identify an access point and is used in for Hotspot 2.0 networks.
Roaming Enables WiFi roaming on Hotspot 2.0 access point when a partnership between the mobile carrier and the access point provider exists.
Add Roaming Organization Identifiers Add to a list of mobile carriers Hotspot 2.0 access points that the device can connect with.
Add Network Access Identifiers Add to a list of names which are used for negotiating a connection with a Hotspot 2.0 access point.
Add Mobile Codes Add to a list of three digit numbers which is used to negotiate a connection with a Hotspot 2.0 access point.
Display Operator Displays the operator name of the Hotspot 2.0 access point the device is connected to.