Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Block Non- complaint devices to access services in LAN network using NPS.

Tarmahmood1
Getting noticed
‎Feb 8 2023 4:33 AM
‎Feb 8 2023 4:33 AM

Block Non- complaint devices to access services in LAN network using NPS.

Hi,

 

Is it possible to block non complaint PCs in LAN network to access other resources for example in Azure.

 

We have VMs in Azure and want non-complaint device not to access them through wired LAN network. We have meraki switch and MX appliance and NPS server in Azure. any practical link for such setup will be appreciated. Thanks

 

Scenario: If a person comes with his personal PC and connects to switch port configured with CORP-network VLAN he should be directed to Guest vlan rather CORP. For wireless i know we can do that but not sure about wired network.

0 Kudos
Subscribe
2 Replies 2
alemabrahao
Kind of a big deal
Kind of a big deal
‎Feb 8 2023 4:48 AM
‎Feb 8 2023 4:48 AM

Well, you can use access control configurtion on the MX:

 

https://documentation.meraki.com/MX/Access_Control_and_Splash_Page/Access_Control

 

Or if it's possible you can use 802.1x on Wired, but your siwtches need to support it. Here an example:

 

https://documentation.meraki.com/MS/Access_Control/MS_Switch_Access_Policies_(802.1X)

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Feb 8 2023 10:51 AM
‎Feb 8 2023 10:51 AM

Like @alemabrahao says - I would be looking at wired 802.1x.

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.