Meraki

DPJW · ‎Jun 12 2020

Can we integrate Dashboard access with AD LDAP / Radius?

Would like to ensure any resigned staff will be automatically remove from Dashboard access

Greenberet · ‎Jun 12 2020

Not directly, but you can implement SSO with SAML.

This should do the trick.

DPJW · ‎Jun 12 2020

Could you explain in details what method is this comparing to integrating with AD?

Nash · ‎Jun 12 2020

@DPJW wrote:
Could you explain in details what method is this comparing to integrating with AD?

If you look at the document linked, you'll see that you can setup SAML using a couple different identity providers. Including AD Federated Services and Azure AD. You can also do a bit of basic digging on SAML, since it's a standard SSO method.

Windows 10 Client VPN scripts: Makes life better!

PhilipDAth · ‎Jun 12 2020

Personally I would recommend using Cisco Duo for your SAML provider. You would need to deploy the Duo Access Gateway (ideally two of them).

https://duo.com/docs/dag

You can use this for authenticating lots of things that use SAML then.

The two Microsoft options, ADFS and Azure AD - are (IMHO) the worst SAML providers in the market.

DPJW · ‎Jun 15 2020

Yea, heard about Duo. But my customer would like to just integrate with their existing AD for the authentication access to Dashboard. The only concern of the customer is if one of the current administrator resign from the company, the admin doesn't need to remove the resigned staff from the Dashboard if it is integrated with AD. Does the SAML SSO able to implement to serve this purpose?

PhilipDAth · ‎Jun 15 2020

>Does the SAML SSO able to implement to serve this purpose?

Yes.