Okta Radius Agent vs Okta LDAP Agent for Wireless Authentication

JRWP-ANGI
New here

Okta Radius Agent vs Okta LDAP Agent for Wireless Authentication

Looking to implement either Okta Radius agent or Okta LDAP agent server on-prem to handle Meraki wireless authentication.

 

Also looking to have office wireless auth traffic go out the internet pipe (not site-to-site) and have allow list on Okta agent for office locations only.

 

Curious if anyone has already looked at both options and there is a clear choice over the other. Just want the facts on both.

 

Thanks in advance.

4 Replies 4
alemabrahao
Kind of a big deal

Today, I personally do this integration directly into Cisco ISE.
 
Maybe this article will be able to help you.

 

https://help.okta.com/en-us/content/topics/integrations/cisco-meraki-radius-intg-gateway.htm

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
JRWP-ANGI
New here

@alemabrahao - Yes, I've been looking at this Okta RADIUS integration documentation as that is all I have found on both Meraki and Okta's site. I haven't seen any documentation around using the Okta LDAP integration with Meraki.

alemabrahao
Kind of a big deal

Take a look at this other discussion.

 

https://community.meraki.com/t5/Wireless-LAN/Enterprise-with-Local-Auth-with-LDAP-Can-use-OKTA-witho...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
PhilipDAth
Kind of a big deal
Kind of a big deal

I wouldn't personally use MFA for WiFi.  Use certificates instead.

Get notified when there are additional replies to this discussion.