Meraki

Community

Meraki Cloud Auth - Max Users & Protocols Supported

Solved
FlyingFrames
Building a reputation
‎Dec 6 2023 1:41 PM
‎Dec 6 2023 1:41 PM

Meraki Cloud Auth - Max Users & Protocols Supported

There is a username password based authentication using Meraki cloud as explained below:

 

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Managing_User_Account...

 

https://documentation.meraki.com/MR/Encryption_and_Authentication/Cloud_Hosted_Meraki_Authentication

 

1. Does it need the client to be configured for PEAP-MSCHAPv2? 

 

2. If yes, will the meraki cloud server certificate be trusted by the client?

 

3. What is the maximum limit of users that can be created in Meraki dashboard for authentication?

 

4. Does the cloud auth integrate with any external identity provider? e.g. Azure AD, Okta etc?

 

5. Will it support certificate based auth e.g. EAP-TLS?

0 Kudos
1 Accepted Solution
alemabrahao
Kind of a big deal
Kind of a big deal
‎Dec 7 2023 3:07 AM
‎Dec 7 2023 3:07 AM

Yes, the Meraki cloud authentication uses a username-password based system, which is typically configured with PEAP-MSCHAPv2.

 

The Meraki cloud server's certificate should be trusted by the client for the authentication process to work correctly. However, certain client devices might get a prompt to trust or ignore validation for the Cisco Meraki certificate they get when connecting to an SSID.

 

The Meraki Dashboard does not explicitly state a maximum limit for the number of users that can be created for authentication. It's important to note that for each SSID, there's a design limit of 128 clients per radio built into the APs (But I really don't recommend connecting more than 30 clients per radio).

 

The Meraki cloud authentication can integrate with external identity providers through RADIUS or SAML. For example, it can be configured with Azure AD using SAML.

 

Yes, the Meraki cloud supports certificate-based authentication such as EAP-TLS. This can be easily deployed to iOS, Android, OS X, and Windows clients using the Systems Manager.

 

https://documentation.meraki.com/General_Administration/Managing_Dashboard_Access/Configuring_SAML_S...

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Configuring_EAP-TLS_W...

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

View solution in original post

2 Replies 2
alemabrahao
Kind of a big deal
Kind of a big deal
‎Dec 7 2023 3:07 AM
‎Dec 7 2023 3:07 AM

Yes, the Meraki cloud authentication uses a username-password based system, which is typically configured with PEAP-MSCHAPv2.

 

The Meraki cloud server's certificate should be trusted by the client for the authentication process to work correctly. However, certain client devices might get a prompt to trust or ignore validation for the Cisco Meraki certificate they get when connecting to an SSID.

 

The Meraki Dashboard does not explicitly state a maximum limit for the number of users that can be created for authentication. It's important to note that for each SSID, there's a design limit of 128 clients per radio built into the APs (But I really don't recommend connecting more than 30 clients per radio).

 

The Meraki cloud authentication can integrate with external identity providers through RADIUS or SAML. For example, it can be configured with Azure AD using SAML.

 

Yes, the Meraki cloud supports certificate-based authentication such as EAP-TLS. This can be easily deployed to iOS, Android, OS X, and Windows clients using the Systems Manager.

 

https://documentation.meraki.com/General_Administration/Managing_Dashboard_Access/Configuring_SAML_S...

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Configuring_EAP-TLS_W...

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Fumito_Matsueda
Meraki Employee
Meraki Employee
‎Apr 23 2024 5:27 AM
‎Apr 23 2024 5:27 AM

The maximum# of Meraki Auth user is 50,000.

スクリーンショット 2024-04-23 21.26.07.png

https://developer.cisco.com/meraki/api-v1/create-network-meraki-auth-user/ 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.