We have an SSL VPN app. (NEPacketTunnelProvider)
Per-app VPN with certificate authentication works when the device is enrolled with Device Enrollment. When the MDM uses User Enrollment the certificate isn't found in the keychain.
- The certificate appears in the Management Profile details on the iOS device.
- There is an identityReference in the VPN configuration profile.
- The profile is correctly associated with the provider, and when the app starts the VPN extension starts and attemps authentication.
- SecItemCopyMatching finds nothing in the keychain.
Any ideas on this?
Kevin