Locking down unused ports while allowing Internet Access
Forgive my ignorance, but I'm fairly new to custom Meraki configurations.
We have multiple locations with Meraki switches and are seeing users plug in devices without approval. I'd prefer to just disable ports that aren't used, but the higher ups want the ports to allow Internet access to allow a user to still email IT to have the port configured. What's the easiest way to do this?
Hi @Wrandall , we typically shut down all unused ports and place them into a non-routed vlan to stop anyone connecting devices into a network that isn’t authorised to do so.
You also have other options such as Radius authentication for devices and users that are authorised to be on the network. Anything that shouldn’t connect into placed again into either a guest vlan or de-authorised.
Also look at Cisco ISE.
Darren OConnor | firstname.lastname@example.org https://www.linkedin.com/in/darrenoconnor/
I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.