We are replacing 40 AVAYA Wirelss APs with Meraki MR45 APs; however, the client currently is using Avaya Identity Engines Ignition Server IDE (RADIUS) which performs authentication and identity services. Unfortunately under authenticator details, I can't find Meraki under "Vendor" drop menu (Cisco is there)...
Is there a way to confirm that Meraki MR 45 will be authenticated via AVAYA RADIUS ?
Solved! Go to Solution.
Well, I haven´t test it, but regarding to this document, it sounds like every radius server can be the radius.
I would use Cisco as the vendor.
if you already have the MR´s (assuming this, as you wrote you replace the APs and not planning to), you could setup everything and within the dashboard you can check the authentification, if it works.
Wireless -> AccessControll -> Radius Server
Thanks so much for your reply!
According to this article below I need to obtain the RADIUS dictionary from my vendor (Meraki) and their numerical vendor ID.
Do you know how can I get these information of Meraki AP?
I think you'll probably have to create a custom device template in the Avaya IDE. I haven't tested with any of this so I can only try to point you in the right direction.
You should know that for dynamic VLAN assignment and group policy assignment Meraki expects the RADIUS server to use any of these four fields (you can configure which one it's actually sending):
The following page also provides details about these from a numeric perspective:
See if you can figure out a way to have Avaya IDE send one of these.
Hopefully that helps already.
Thank you so much for your reply!
In order to create a custom device template in the Avaya IDE, we need Meraki RADIUS Dictionary Files ...
Where can I obtain them?
RADIUS attribute Files: (RADIUS VSA Name/ Attribute Type) and vendor ID for Meraki MR
You could also consider changing to a different RADIUS product. Microsoft Network Policy Server (NPS) is very popular because it comes with Windows Server.
Thanks so much for your reply!
I've been contacting AVAYA/Extremenetworks support and they are not sure if selecting Cisco as vendor will work for Meraki. However, they showed me how to add new vendor and new selection of attribute value pairs specific to that vendor under the Vendors listing. (Does Meraki have a Vendor ID?)
The client currently is using AVAYA IDE as RADIUS server and it's up and running and working fine, so he is not looking to replace it with Microsoft Network Policy Server (NPS).
We are going for live deployment in two days; and I can't risk it if the AVAYA IDE RADIUS doesn't accept Cisco vendor for Meraki.
Going live without a POC seems like a bad idea tbh 😮. Dot1x can seriously mess with your network if not working correctly.
I don't think Meraki has its own Vendor ID. As I posted before it integrates nicely with third party RADIUS servers and works with multiple fields from multiple vendors. You just need to configure which field your RADIUS is going to send to the authenticators (in this case the APs).
Well, two days is enough time for a POC, but you shouldn´t go live without the POC...
as far as I understand, it´s even not working at the moment?