Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

RADIUS server for VPN question?

lakshadvio
New here
‎Apr 30 2020 2:13 AM
‎Apr 30 2020 2:13 AM

RADIUS server for VPN question?

I've enabled RADIUS option on Meraki dashboard so users can login with their Active Directory / Windows account.  This is working.  I have 2 RADIUS servers, and I have both of them added in the Meraki dashboard.

 

My question is, since I have 2 RADIUS servers, do they do 'load sharing'?  For example, does all the RADIUS requests go to the first RADIUS server all the time or does the second RADIUS server take over automatically?

 

 

Plus, I have some users that doesn't log out of VPN when they're done and put their computers to sleep.  But sometimes they get an error (756 This connection is already being dialed.) when they try to connect again.  If they sign out / restart their laptops and try again this works.  

 

Lastly, does Meraki have any plans to make a 10GB router?  My ISP speed is 100 Mbps / 100 Mbps.  Almost all my switches at work is 10GB. 

19216801.onl/ routerlogin.uno// https://192168ll.link/
0 Kudos
Subscribe
8 Replies 8
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Apr 30 2020 2:34 AM
‎Apr 30 2020 2:34 AM

As to your first question:

No, the first configured RADIUS server will be used until it isn't reachable anymore from the NAD. Then it will automatically fail over to the second, third, ... one.

 

As to the last question:

Please note that this is a community forum. Of course there are some fellow Meraki-employees helping us out here, but the best option would probably be getting in contact with your sales rep.

Subscribe
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Apr 30 2020 12:53 PM
‎Apr 30 2020 12:53 PM

The Meraki MX250 and MX450 both have 10Gbe interfaces - but they are not for home use.  They are designed for data centres.

 

>But sometimes they get an error (756 This connection is already being dialed.) when they try to connect again.

 

That's a Microsoft issue that one.  Nothing Meraki can do about it.

0 Kudos
Subscribe
In response to PhilipDAth
roundcubeten
New here
‎Oct 3 2020 12:44 AM
‎Oct 3 2020 12:44 AM

Why would I need a RADIUS server if my clients can connect and authenticate with Active Directory? When do I need a RADIUS server? shareit app vidmate

 
0 Kudos
Subscribe
In response to roundcubeten
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Oct 3 2020 5:35 PM
‎Oct 3 2020 5:35 PM

The Windows VPN client does not use any authentication protocol that is supported by Active Directory natively.  So you have to use something to go between them - a RADIUS server.

0 Kudos
Subscribe
In response to PhilipDAth
cmr
Kind of a big deal
Kind of a big deal
‎Oct 4 2020 1:46 AM
‎Oct 4 2020 1:46 AM

The Microsoft NPS is such a tool, it has RADIUS conversations on one side and talks to AD on the other.

Subscribe
In response to cmr
tantony
Head in the Cloud
‎Oct 5 2020 5:56 AM
‎Oct 5 2020 5:56 AM

That's what I'm using for my VPN authentication.  

0 Kudos
Subscribe
In response to spiceagent11
CptnCrnch
Kind of a big deal
Kind of a big deal
‎May 17 2021 3:31 AM
‎May 17 2021 3:31 AM

Completely dependent on the network device. Most of them will query the first RADIUS server and fall back to the second one in case the first is not reachable / takes too long to answer.

 

If you want load sharing, you'd stick to an external load balancer.

0 Kudos
Subscribe
katesmith1304
New here
‎Mar 22 2023 12:16 PM
‎Mar 22 2023 12:16 PM

Is there an option to authenticate VPN users on an Omada system via RADIUS on a Windows Server 2019 domain controller?

..
0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.