Meraki

Community

Meraki 802.1x machine certificate

Ahoy_Soy
New here
‎Nov 10 2020 5:52 AM
‎Nov 10 2020 5:52 AM

Meraki 802.1x machine certificate

Hello Community

 

I'm trying to figure out if we can use 802.1x on meraki switches that can use machine certificates to authenticate via radius.

 

According to this official document, switches can only authenticate using domain credentials, MAB or hybrid;

 

https://documentation.meraki.com/MS/Access_Control/MS_Switch_Access_Policies_(802.1X)

 

I am aware this is possible with the meraki APs;

 

https://documentation.meraki.com/MR/Encryption_and_Authentication/RADIUS%3A_WPA2-Enterprise_With_EAP...

 

Any help would be appreciated, especially confirmation if anyone currently uses this in their setup 

 

🙂

0 Kudos
1 Reply 1
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 10 2020 10:08 AM
‎Nov 10 2020 10:08 AM

In short, yes.

 

The switch itself has no idea what credentials are being presented to it.  So if you configure Active Directory group policy to present machine credentials (don't even have to use certificates, but you can), it will.  And if you configure the RADIUS server to allow that group, it will.

 

The switch itself just passes on whatever credentials it is given and responds to the RADIUS server message saying weather to allow or deny access.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.