For hybrid environments (that being ConfigMgr integrated with Microsoft Intune), it’s not possible to deploy a WIFI profile using a pre-shared secret in the UI. This will however not prevent you from creating and deploying WPA-2 Personal security WIFI profiles in the console. You will just be deploying the WIFI profile without the WIFI password. 

image

Windows Phone 8.1 will re-apply the same profile over and over again

When users receive the WIFI profile all they have to do is add the password and they will have WIFI connection. This works great for Android and iOS, but not for Windows Phone 8.1. For Windows Phone 8.1, the password will be wiped every time the device is synchronizing with Windows Intune (due to the fact that the Windows Phone is non-compliant with the new password).

To fix the Windows Phone 8.1 issue, you need to create an XML file with the settings (can be exported from an existing Windows 8.1 machine). In this example, I will create a new WIFI profile named WIFI corp and import all the settings including the pre-shared secret from a XML file.

  1. From Assets and Compliance, Compliance Settings, Company Resource Access, select WI-FI Profiles and create a new profile. Name the profile, enable Import an existing WI-FI profile item from a file and click Next.

    image
  2. Import your XML file from a network share location.

    image

  3. This is the XML file that I imported. A few things to notice is the password, SSID and connectionMode. In this example connectionMode is manual, most admins might want to chance that to auto if you want the device to automatically reconnect to the WIFI after a restart.

    image

  4. All left to do, is deploy the profile to all Users and select Windows Phone 8.1 as a requirement.

One thing to keep in mind is that Windows Phones do not support all WIFI XML formats that Windows PCs do.