switch access policy

jay_b
Getting noticed

switch access policy

We have OKTA Radius agent as our Radius server. I have been trying to use that as switch access policy but can't make it work. I am just tired with trying. Is there any other way to restrict switch port access with easy way ?

9 REPLIES 9
Inderdeep
Kind of a big deal
Kind of a big deal

@jay_b : Check this out 

https://help.okta.com/en/prod/Content/Topics/integrations/cisco-meraki-radius-intg.htm

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com

Hello @Inderdeep  Thanks for your response. This page looks like it is only for wireless not for switches or switchport.

Inderdeep
Kind of a big deal
Kind of a big deal

@jay_b : Check this one as well 

https://community.meraki.com/t5/Switching/EAP-TTLS-or-PAP-for-Wired-Port-Security/td-p/88458

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
PhilipDAth
Kind of a big deal
Kind of a big deal

I can't find a single guide on using Okta for wired 802.1x.  Even Google is slim on search results.

 

I would check if Okta even supports doing this with Okta.

@PhilipDAth  Sure will check with Okta. What are other options in case if Okta doesn't work.

PhilipDAth
Kind of a big deal
Kind of a big deal

@PhilipDAth That would be something not possible because we are planning to stay away from on-premise and move more towards the cloud. 

Inderdeep
Kind of a big deal
Kind of a big deal

@jay_b : Check with Jumpcloud for Radius authentication on cloud 

https://jumpcloud.com/blog/cisco-meraki-radius-as-a-service 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com

Hello, @Inderdeep  Thanks for your suggestion. I agree with you but we have Okta in place already and it would be a waste of money if we go with Jumpcloud. 

 

Is there any other way to restrict switch ports other than Radius ?

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels