cancel
Showing results for 
Search instead for 
Did you mean: 

Restrict computers for VPN access.

Here to help

Restrict computers for VPN access.

Does anyone know if there is a way to restrict client VPN connectivity to allow only specific computers, when it comes to Meraki? Is it possible to do this with RADIUS perhaps?

 

I have a client that has a policy to only allow AD domain joined computers to connect to the VPN, and if Meraki/RADIUS/?, can do this I would like to sell them on Meraki. They are currently using a Sonicwall TZ400 for their firewall and an SRA1600 vpn appliance of which handles the required setup currently itself.

 

Thanks,

 

Ryan

2 REPLIES 2
Kind of a big deal

Re: Restrict computers for VPN access.

Yes, you can define which account database is to be used with Client VPN:

 

2019-02-12 19_00_48-Greenshot.png

 

Don't expect a fully featured client VPN though. The creation of the VPN profile on the clients is described here:

https://documentation.meraki.com/MX/Client_VPN/Client_VPN_OS_Configuration

 

Rollout can also be scripted (credits to @PhilipDAth):

http://www.ifm.net.nz/cookbooks/meraki-client-vpn.html

 

The built-in clients are limited in features.

Kind of a big deal

Re: Restrict computers for VPN access.

>I have a client that has a policy to only allow AD domain joined computers to connect to the VPN

 

You wont be able to do this.  All you can do is checked that the user has entered an AD username/password - but not verify that it is being done from an AD joined computer.

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.