cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MX Client VPN with AD Auth - How to restrict to specific OU's?

New here

MX Client VPN with AD Auth - How to restrict to specific OU's?

I can't find in the documentation for the life of me how to restrict access to client VPN by OU or security groups in AD, can someone point me in the right direction?

 

As far as I can tell it seems that any user that is enabled in AD can login via client vpn 

2 REPLIES 2
Kind of a big deal

Re: MX Client VPN with AD Auth - How to restrict to specific OU's?

Have you seen these docs:

https://documentation.meraki.com/MX/Client_VPN/Configuring_RADIUS_Authentication_with_Client_VPN

 

Seems to me that the following steps allow you to limit it:

5. Click Add to add conditions to your policy.

6. From the list of conditions, select the option for Windows Groups. Click Add Groups and enter the name of  Windows Group you would like to give Client VPN permission. 

Highlighted
Kind of a big deal

Re: MX Client VPN with AD Auth - How to restrict to specific OU's?

Are you using RADIUS? When you said AD I'm assuming you're not using RADIUS? If that's the case then this might help you:

 

https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Configuring_Active_Direc...

 

image.png

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.