Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

WPA-2 Enterprise with Radius and Duo

G_ControlScan
Here to help
‎Feb 26 2019 8:12 AM
‎Feb 26 2019 8:12 AM

WPA-2 Enterprise with Radius and Duo

To All,

 

Has anyone been successful in setting up an SSID, with WPA2-Enterprise with "my RADIUS server" authentication with 2FA to Duo? I manage the Meraki network although a 3rd party manages the servers and the 3rd party states Duo does not support 2FA over Wi-Fi, but Duo 2FA does work over Meraki Client VPN. Thanks for your input.

0 Kudos
Subscribe
1 Reply 1
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Feb 26 2019 9:51 AM
‎Feb 26 2019 9:51 AM

I think it would technically work if you use the "push" notificaiton option.  This shouldn't need anything extra from the RADIUS client (aka the AP) and the RADIUS server only needs to send an ACCEPT/REJECT.

 

However I can see several caveats.

  • Roaming could be a real pig.  Especially if you are between two APs in a fringe area.   You may get a lot of push notifications if re-authentication happens.
  • Every time you walk into coverage (such as when you come to work every morning) you'll get a push notification.

I think it will be a real pain.

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.