Thanks for the reply PhilipDAth. I've read that topic and applied the recommended change, and although I am seeing users successfully logged into the VPN, authentication still seems to be hit and miss judging from my MX log (see image below).

MX84 log snippet

From looking at the deployment roadmap at that link, it would seem that this issue will become a real problem when Microsoft makes it impossible to disable that CVE fix in 2022, which isn't that far away.

Has there been a proper resolution put into place for this yet?   I chose to disable it on one of my servers while we have the option.  The ability to manually disable it ends in June per the document referenced above: KB5004442 - DCOM hardening 

I haven't seen anyone having this issue using RADIUS authentication against NPS.  Are you sure you are using RADIUS authentication rather than direct Active Directory authentication?

You are absolutely right!  I meant AD authentication..not radius.  Support ticket opened indicates this a MS problem and not a Meraki problem, but come June this could be a bigger issue because the registry fix won't work.

NPS (Microsoft's RADIUS server) is built into Windows Server and has no additional cost.  Any reason you can't change over to using it?

I can certainly do that.  This would remediate this issue then because it is specific to AD authentication?

Correct.