Can we integrate Dashboard access with AD LDAP / Radius?

DPJW
Conversationalist

Can we integrate Dashboard access with AD LDAP / Radius?

Can we integrate Dashboard access with AD LDAP / Radius?

Would like to ensure any resigned staff will be automatically remove from Dashboard access

6 REPLIES 6
Greenberet
A model citizen

Not directly, but you can implement SSO with SAML.

This should do the trick.

DPJW
Conversationalist

Could you explain in details what method is this comparing to integrating with AD?

Nash
Kind of a big deal


@DPJW wrote:

Could you explain in details what method is this comparing to integrating with AD?


If you look at the document linked, you'll see that you can setup SAML using a couple different identity providers. Including AD Federated Services and Azure AD. You can also do a bit of basic digging on SAML, since it's a standard SSO method.

PhilipDAth
Kind of a big deal

Personally I would recommend using Cisco Duo for your SAML provider.  You would need to deploy the Duo Access Gateway (ideally two of them).

https://duo.com/docs/dag 

You can use this for authenticating lots of things that use SAML then.

 

The two Microsoft options, ADFS and Azure AD - are (IMHO) the worst SAML providers in the market.

DPJW
Conversationalist

Yea, heard about Duo. But my customer would like to just integrate with their existing AD for the authentication access to Dashboard. The only concern of the customer is if one of the current administrator resign from the company, the admin doesn't need to remove the resigned staff from the Dashboard if it is integrated with AD. Does the SAML SSO able to implement to serve this purpose?

PhilipDAth
Kind of a big deal

>Does the SAML SSO able to implement to serve this purpose?

 

Yes.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.