MX100 VPN access over Active DIrectory

N3wYork3r
New here

MX100 VPN access over Active DIrectory

Hello, We are upgrading our Network infrastructure and replacing it with all Cisco Meraki gear. we gonna use MX100 for the firewall and VPN access site-to-site and VPN client. we currently using the Active Directory for authentication with our Windows RRAS server. As per the documents I'm pretty sure we can configure the MX100 to authenticate using the Active Directory and then we can get rid of the Windows RRAS server. Can someone confirm this design will work or if we need extra equipment or setup? ANyone has it working?

 

3 REPLIES 3
Nash
Kind of a big deal

Are you looking to use AD to authenticate users for the client VPN?

 

If so, you've got a second way to go, beyond what @jdsilva linked. I usually use Network Policy Server for RADIUS: https://documentation.meraki.com/MX/Client_VPN/Configuring_RADIUS_Authentication_with_Client_VPN

 

Partly because I'm usually already doing RADIUS thru NPS for other network equipment, so it's easy to add one more task.

Nick
Head in the Cloud

I can second these options, i've done both AD and RADIUS for VPN before without issue. Quite a simple plug and connect

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels