Azure AD authentication on Meraki WiFi

Solved
KevinI
Conversationalist

Azure AD authentication on Meraki WiFi

Hi guys,

 

We are working on moving away from our on-premises AD to Azure AD. Part of our current infrastructure is using RADIUS authentication on our WiFi network, linked to our AD.

 

Seeing as using Azure AD directly isn't an option yet for Meraki, have you guys come up with any solutions for this?

 

I've been reading some posts about using a splash page to authenticate against Azure AD, but nothing specific or with a detailed configuration guide.

 

We don't want to spin up a VM in Azure just for this. I'm guessing we are not only ones facing this issue?

1 Accepted Solution
MikeJ
Meraki Employee
Meraki Employee

Hello everyone! I wanted to chime in here and provide an update on this topic.


Thanks to the latest feature in the Meraki dashboard known as Access Manager, you can sync users from Microsoft Entra ID (formerly Azure AD) for authentication. To learn more, see the following community thread about the feature:

https://community.meraki.com/t5/Feature-Announcements/Meraki-Organization-Users-Page-Now-Generally-A...

View solution in original post

209 Replies 209
Scratcher9
Comes here often

Years ago i had a cisco WLC that had a web auth to local users for a SSID.  This didn't work when devices went to sleep, they always had to reauth.

Puck
Conversationalist

I have the Splash Login set to 1 week.  Once a device authenticates it is good for 7 days.  My laptop auto connects every morning with no issues.  Same for mobile

Scratcher9
Comes here often

Ok thanks for letting me know. 

sys-admin
Conversationalist

Has anyone attempted to use this for multiple SSID's? There doesn't seem to be a way to scope users/groups to different SSID's with this method.

Pb_matt
New here

I'm having an issue where the 'Sign in with Microsoft' button is not clickable in iOS. Has anyone else experienced this?

MikeJ
Meraki Employee
Meraki Employee

Hello everyone! I wanted to chime in here and provide an update on this topic.


Thanks to the latest feature in the Meraki dashboard known as Access Manager, you can sync users from Microsoft Entra ID (formerly Azure AD) for authentication. To learn more, see the following community thread about the feature:

https://community.meraki.com/t5/Feature-Announcements/Meraki-Organization-Users-Page-Now-Generally-A...

Avenir
Here to help

The documentation only mentions settings for VPN authentication using this method.

Will it also work for Wi-Fi authentication? If so, is there a manual or guide available for that setup?

webbexpert
Here to help

Similar to the other poster. Would it be possible to include the documentation for the GA availability of IDP authorization to Meraki's SSIDs?

 

Syncing users may be topical to user management, but during the BETA, the only requirement was to setup the SSID Access Control w/ Entra's IDP via x509 and walled-garden settings. It had very little, if nothing, to do with identity sync from AD.

 

This thread has a long history of asking for apples and getting oranges 😞

Scratcher9
Comes here often
Get notified when there are additional replies to this discussion.