Meraki Acess Manager wired TTLS with Entra ID

Don-Shu
Conversationalist

Meraki Acess Manager wired TTLS with Entra ID

My company is building a lab to test out all the different possibilities that meraki access manager can provide. So we already synced Entra ID with access manager and tested out a few policies using an access point. Everything works perfect. 

Now the problem arises when implementing access manager on a wired connection ( e.g. a switch). We want users to be able to authenticate using Entra ID on a wired based connection using TTLS on windows or mac. 

The documentation only shows how to do this for wireless connections. Or do I actually need a separate RADIUS server for this setup?  

5 Replies 5
RWelch
Kind of a big deal
Kind of a big deal

The instructions in this article are intended as a reference to assist organizations in understanding the network settings, which can be useful when configuring network settings through an MDM or Group Policy (GP) update:

Access Manager - EAP-TTLS Client Configuration (Windows, macOS and iOS) 

Access Manager Configuration Guides 

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
PhilipDAth
Kind of a big deal
Kind of a big deal

I believe you will only be able to get this to work using EAP-TLS.

Don-Shu
Conversationalist

Hi guys thanks for the responses, I really appreciate it. I finally managed to get it working today using both EAP-TTLS and EAP-TLS on windows.

Kris3
New here

Hi Don-Shu,

 

I am currently trying to implement EAP-TTLS on the wired connection. I have Entra ID integrated with all the users and groups, but I can't seem to get the authentication working on my end. Would you be able to share your configuration on this? Thanks

Don-Shu
Conversationalist

Hi Kris3,

 

Are you by any chance using the cisco secure client (NAM module)? In my case while using widows, the secure client NAM was interfering/conflicting with the widows native ethernet adapter and causing authentication errors. So I just decided to use the native windows ethernet adapter and configured the settings to use EAP-TTLS with inner tunnel PAP.

 

Get notified when there are additional replies to this discussion.