Meraki

Community

Is the device really blocked?

Solved
AY2022
Getting noticed
a week ago
a week ago

Is the device really blocked?

Hi All, 

 

Would like to see whether this is 'normal' for everyone

 

From the clients page of a device, device policy is set to Blocked (all), followed by Save. 

I gave it 5 min and then click disconnect client. 

I then waited another 5 min and refresh the page. 

Under overview > status, I still see the same device associated since (most recent date / time), with all the other information filled. 

When I checked the device physically, the IP show on the portal matches to what the device is getting. 

 

So I'm wondering whether the device policy (block) is really working? How can I tell? 

 

Thank you.

Labels:
0 Kudos
1 Accepted Solution
In response to AY2022
alemabrahao
Kind of a big deal
a week ago
a week ago

Nope. Just changing the password, or using another authentication method like 802.x for example.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

View solution in original post

0 Kudos
6 Replies 6
alemabrahao
Kind of a big deal
a week ago
a week ago

Blocked does not mean that it will be prevented from connecting.

What will happen is that the device will not be able to access network resources, both internal and external. So yes, it is normal.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
alemabrahao
Kind of a big deal
a week ago
a week ago

Look at this.

alemabrahao_0-1744710818341.png

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Brash
Kind of a big deal
Kind of a big deal
a week ago
a week ago

Applying a block policy doesn't prevent the device from WiFi association. It just means that they won't be able to browse to anything.

 

So you'll still see them as connected in the Meraki portal but they should be blocked from accessing anything.

 

Reference: https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Blocking_and_Allowing...

AY2022
Getting noticed
a week ago
a week ago

Thanks for the prompt reply and sharing. 

Is there a way to prevent that particular device from successfully connecting?

 

I do not want to change the password (as it will affect other devices), but I want to "flush" this device out so that I can remove the saved SSID (which is the wrong SSID in the first place) from it.

0 Kudos
In response to AY2022
alemabrahao
Kind of a big deal
a week ago
a week ago

Nope. Just changing the password, or using another authentication method like 802.x for example.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to AY2022
TBHPTL
Head in the Cloud
a week ago
a week ago

Even if you did block their mac address, they would just change it... the way to prevent them from getting an IP is to implement 802.1X on the SSID. no valid creds = no  IP,  no access. Client will attempt to join but will fail every time.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.