Meraki

Community

Action needed, no internet using PSK (WPA2) login

Solved
vilmantasr
Here to help
‎May 15 2023 10:52 PM
‎May 15 2023 10:52 PM

Action needed, no internet using PSK (WPA2) login

Hello, with one SSID I always get requests in Windows 10, 11, Android, maybe Apple:  Action needed, no internet. Drivers, OS are latest. Problem only with this one SSID, settings are identical to others, so I don't understand why it always asks to open a web page to login.

 

20230516_083555.jpg2.png

0 Kudos
1 Accepted Solution
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 16 2023 1:12 AM
‎May 16 2023 1:12 AM

You are not using one of those "personal" VPNs by chance?

 

As a punt, try removing all the Content Categories and see if the issue goes away.  If it does, add half of them back and re-test.  Repeat until you narrow down which content category is causing the issue.

 

I am most suspicious of "DoH and DoT" and "DNS Tunneling", so I would try removing those first.

View solution in original post

8 Replies 8
KarstenI
Kind of a big deal
Kind of a big deal
‎May 15 2023 11:39 PM
‎May 15 2023 11:39 PM

What happens when you click “Open browser ..”? And are your firewall rules for this SSID blocking something?

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
vilmantasr
Here to help
‎May 15 2023 11:57 PM
‎May 15 2023 11:57 PM

it opens http://www.msftconnecttest.com/redirect and OS shows, that internet is now connected. i think that is meraki firewall related, but which part is the question.

 

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 16 2023 12:52 AM
‎May 16 2023 12:52 AM

What is providing DNS, and what is providing the Internet access?

 

After connecting Windows is trying to access www.msftconnecttest.com and failing - so something is breaking that initial connectivity, even if it works later.

 

Are you using any software based firewall on the machines other than Windows firewall?
Do you have any web or content filtering software anywhere?

0 Kudos
In response to PhilipDAth
vilmantasr
Here to help
‎May 16 2023 1:05 AM
‎May 16 2023 1:05 AM

Google DNS, only Meraki firewall.

 

maybe there is to much:

 

66.png

0 Kudos
In response to vilmantasr
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 16 2023 1:12 AM
‎May 16 2023 1:12 AM

Actually, before you do anything, if you are not running stable firmware or better on your MX, upgrade to at least stable.

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 16 2023 1:12 AM
‎May 16 2023 1:12 AM

You are not using one of those "personal" VPNs by chance?

 

As a punt, try removing all the Content Categories and see if the issue goes away.  If it does, add half of them back and re-test.  Repeat until you narrow down which content category is causing the issue.

 

I am most suspicious of "DoH and DoT" and "DNS Tunneling", so I would try removing those first.

In response to PhilipDAth
skytrooper20
Conversationalist
a week ago
a week ago

I have this exact same issue. I do not have the advanced security license and therefor am not using content categories nor threat categories. I am doing all firewall and security settings at the "Wireless" level and not the "Security and SD-WAN" level. WPA2 only, 802.11r enabled, 802.11w enabled. Captive portal strength block all access....,  walled garden disabled, external dhcp server assignment (single vlan), no group policies used, DNS nameservers - proxy to upstream DNS (also tried google public dns). 
Until I click on that windows side prompt "open browser and connect" the browser page and splash page will never trigger and appear; but once I click on that windows prompt, i get a new browser tab that opens with the www.msftconnecttest.com/redirect and then it successfully redirects to my splash page and then everything works perfectly fine.
I have tested this also with a UniFi wireless network that uses a splash page and get the same windows side prompt about open and connect. This doesn't appear to be strictly limited to meraki splash page.

0 Kudos
vilmantasr
Here to help
‎May 16 2023 1:39 AM
‎May 16 2023 1:39 AM

it seems that was the problem: I am most suspicious of "DoH and DoT" and "DNS Tunneling", so I would try removing those first.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.