Meraki

Community

VPN Client Meraki MX - Laptop W10 Mistake

Carlos1
Comes here often
Thursday
Thursday

VPN Client Meraki MX - Laptop W10 Mistake

Hi team, I'm reaching out for your expertise. I'm having an issue with the Meraki VPN client.

We have two MX64 <-MS <- MR connected to Windows 10 laptops. We configured it according to Meraki's guides, but it's displaying the following message:

 

Carlos1_0-1767918156065.png

 

The strange thing is that we've also configured it on macOS, and it works perfectly; the connection is successful.

 

I see some posts indicating that it's due to a Windows update, but those posts are three years old 2022-2023. I don't know if anyone is still experiencing this problem in 2026.

 

Regards

0 Kudos
15 Replies 15
KarstenI
Kind of a big deal
Kind of a big deal
yesterday
yesterday

First: Try the script from @PhilipDAth 

https://www.ifm.net.nz/cookbooks/meraki-client-vpn.html

 

And even better, get some Cisco Secure Client Licenses and use AnyConnect. That is much better and more powerful.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
In response to KarstenI
Carlos1
Comes here often
yesterday
yesterday

I tried using the provided script, but the problem persists.

 

 

I configured it with AnyConnect, but the problem remains.

0 Kudos
In response to Carlos1
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

what is the error code?


https://documentation.meraki.com/SASE_and_SD-WAN/MX/Troubleshooting_and_Support/Troubleshooting/Trou...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
Carlos1
Comes here often
yesterday
yesterday

This is Error in log dashboard Meraki with AnyConnect

 

Carlos1_1-1767986968065.png

 

 

0 Kudos
In response to Carlos1
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

You need to check the Windows logs in the Windows Event Viewer.
Take a look at the link I sent you.

 

These logs are related to AnyConnect, and from what I see, you're using the native Windows client with L2TP. Therefore, this log doesn't make any sense.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
Carlos1
Comes here often
yesterday
yesterday

this error 789

 

Carlos1_0-1767987916637.png

 

Adapter VPN-Test (spanish) - is correct?

 

Carlos1_1-1767988061823.png

 

0 Kudos
In response to Carlos1
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Change the option highlighted in red to not require a cryptography, set as optional.

alemabrahao_0-1767988182508.png

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
Carlos1
Comes here often
yesterday
yesterday

the problem persists

 

Carlos1_0-1767988874116.png

 

0 Kudos
In response to Carlos1
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

IKE and AuthIP IPsec keying modules disabled

This might occur if third-party VPN software has been installed and disables the IKEEXT service. To reenable the service:

  1. On the affected device, press the Windows key and type Control Panel
  2. From the search results, click on Control Panel
  3. Navigate to Administrative Tools > Services
  4.  Find the service named "IKE and AuthIP IPsec Keying Modules" and double-click to open
  5. Select Automatic from the Startup type drop-down menu

 If the service automatically reverts to Disabled, or fails to start, remove the third-party VPN software.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Just one question: are you performing this test on the same network where the MX is installed, or on a remote network (like in your home, for example)?

If you're on the local network where the MX is installed, this won't work.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
Carlos1
Comes here often
yesterday
yesterday

I am doing the tests at another location

0 Kudos
In response to alemabrahao
Carlos1
Comes here often
yesterday
yesterday

The IPsec service isn't showing up for me =O

How do I make those IPsec services appear?

 

Carlos1_0-1767989974980.png

 

 

0 Kudos
In response to Carlos1
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

I don't speak Spanish, but considering it's similar to Portuguese, it should be listed under the letter M.

alemabrahao_0-1767990439662.png

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
Carlos1
Comes here often
yesterday
yesterday

If I check, I think I've already located it.

0 Kudos
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Registry Adjustment (for NAT network)
If your client or server is behind a router with NAT:

Open the Registry Editor (regedit).

Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PolicyAgent.

Create a DWORD AssumeUDPEncapsulationContextOnSendRule and set the value to 2.
Restart the machine.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2026 Cisco Systems, Inc.