Meraki

Community

Enrollment authentication with Google Idp

mraffa
Conversationalist
‎Apr 4 2021 10:05 AM
‎Apr 4 2021 10:05 AM

Enrollment authentication with Google Idp

Hello everyone 

 

I’m trying to understand if there’s any chance to authenticate Google users on DEP enrolled Mac devices. 
That would really come in handy in a zero touch deployment, as that would make you able to push down Google account configuration using owner datas. 
I know that oauth isn’t supported on DEP devices (I don’t understand why though), but maybe using LDAP instead?

Was anyone able to accomplish this?

Labels:
0 Kudos
6 Replies 6
Inderdeep
Kind of a big deal
Kind of a big deal
‎Apr 4 2021 11:08 AM
‎Apr 4 2021 11:08 AM

So you are talking about iOS devices on Apples DEP. please check the below document

https://documentation.meraki.com/SM/Device_Enrollment/Enrolling_and_Supervising_iOS_Devices_using_Ap...

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
In response to Inderdeep
mraffa
Conversationalist
‎Apr 4 2021 11:18 AM
‎Apr 4 2021 11:18 AM

No, I am talking about enrollment authentication for DEP enrolled MacOS devices: https://documentation.meraki.com/SM/Device_Enrollment/SM_Enrollment_Authentication

0 Kudos
In response to mraffa
Inderdeep
Kind of a big deal
Kind of a big deal
‎Apr 4 2021 12:30 PM
‎Apr 4 2021 12:30 PM

I am not sure if it works like that but Check this Active directory via SM agent

https://documentation.meraki.com/SM/Device_Enrollment/SM_Enrollment_Authentication#Managed_Authentic...

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
In response to Inderdeep
mraffa
Conversationalist
‎Apr 4 2021 1:13 PM
‎Apr 4 2021 1:13 PM

That’s the same doc I linked. I know that AD is the only supported authentication method (together with Meraki managed) for DEP enrolled devices, that is clearly stated in the doc.

AD is an LDAP implementation, but it’s kind of its own. That is definitely not what Google provides with its Secure LDAP service (https://support.google.com/a/answer/9048516).

I was just wondering if anyone tried to set up the binding with Google LDAP service.

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Apr 5 2021 2:25 PM
‎Apr 5 2021 2:25 PM

https://documentation.meraki.com/SM/Device_Enrollment/SM_Enrollment_Authentication#Sign_in_with_Goog... 

0 Kudos
In response to PhilipDAth
mraffa
Conversationalist
‎Apr 5 2021 2:40 PM
‎Apr 5 2021 2:40 PM

That is the same article I linked in a previous post.
Google oauth isn’t supported on DEP enrolled Mac devices.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.