Meraki

QCSupply123

Hello everyone,

I've searched the internet for many hours and haven't found exactly what I'm looking for.

With that said, I'm trying to setup device authentication to our wireless network as we do not have devices joined to a domain (which is why an NPS/RADIUS/CA doesn't work).

Using Local Auth certificate authentication, is this possible? If so, what cert do I need to use for the clients because I haven't gotten anything to work so far.

I need a universal cert I can push out to all my devices with the ultimate goal of keeping BYOD's off the network.

Any ideas are greatly appreciated!

Mloraditch

You might be able to use this method:https://documentation.meraki.com/MR/Encryption_and_Authentication/Meraki_Local_Authentication_-_MR_8...

Set something like this:

I've never done it so can't speak to whether it would actually work, but as long as each client has a cert signed by the client certificate CA and that's what presented it seems like it should work.

I'm not sure I'd recommend it unless you have no other options. A shared certificate on every device with no verification could leave room for a lot of shenanigans.

This is another serverless method that could work that I'm aware of:
https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Certificate-based_Wi-...

The new access manager may be able to help eventually if you have an Entra environment:https://documentation.meraki.com/Access_Manager

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

Meraki

Community

Local Auth with certificates

Local Auth with certificates