Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Meraki wireless Azure AD with MFA

Richard-Tapp
Conversationalist
a month ago
a month ago

Meraki wireless Azure AD with MFA

We currently use Radius / NPS for our AD authenticated wifi, using Azure AD, with no issue.

 

We are trying to test this with the Entra ID add on for NPS to do the same but using the MFA from AD.

 

This works to a point, when I try to connect to the SSID, I get a text code from MS, but no where to enter this on my PC.

 

Does anyone have any idea what we could be missing ?

Labels:
0 Kudos
Subscribe
2 Replies 2
GIdenJoe
Kind of a big deal
Kind of a big deal
4 weeks ago
4 weeks ago

You can't enter this on your pc.
If you're doing MFA you need to have MFA setup on your mobile phone and accept the connection there.

 

But why on earth would you want to do MFA for Wi-Fi.
This means everytime you do a slow roam you will be prompted for MFA before being able to connect to an AP.  This will be the best way to get all your users to draw pitchforks on you.

 

Don't ever do MFA on Wi-Fi.

0 Kudos
Subscribe
double_virgule
Here to help
4 weeks ago
4 weeks ago

Like @GIdenJoe says - I don't believe Windows natively supports MFA on its wifi client, or even for Windows login to PC. If you want to implement MFA on wifi, I think you'll have to also set up some sort of third-party wifi manager on the PC(s).  

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.