Meraki

Community

SSID EntraID splash sign-in with MFA and Iphones

MartinLL
A model citizen
yesterday
yesterday

SSID EntraID splash sign-in with MFA and Iphones

Hi,

I have a strange issue with Iphones and EntraID sign-in with Meraki Splash pages.

 

When the user connects to the network the internal Iphone splash page pops up. The user gives consent and starts the sign in process with no issues. After logging they get prompted by MFA.

 

When the user switches to the authenticator app and completes the MFA prompt the splash page login is gone and the authentication process is interupted.

 

This works just fine for windows devices and android phones.

 

Anyone found a solutiuon to this yet?

 

I can also add that if the iphone user opens safari, browses and browses the default gateway the can complete the MFA process and get access. So it looks like the issue is related to the iphone built in browser for splash page signin.

 

MLL
0 Kudos
2 Replies 2
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Modify your splash page to force users to open the login in Safari, bypassing the CNA browser.

 

Take a look at this.

 

Troubleshooting the Microsoft Enterprise SSO Extension plugin on Apple devices - Microsoft Entra ID ...

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
merakijockey85
New here
yesterday
yesterday

Gave that article a read but am missing the pertinent config option to which you're referring. Splash page customization settings available don't seem to suggest anything about browser control. Your link to the MS SSO plugin is something we don't use, and mobile devices aren't enrolled in MDM.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
© 2025 Cisco Systems, Inc.