Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Splash created with radius server is not working with actual AD credentials

Rohit_Rana
Getting noticed
‎Jul 19 2023 5:29 AM
‎Jul 19 2023 5:29 AM

Splash created with radius server is not working with actual AD credentials

Hello Everyone,

 

I have created Radius server for splash page authentication to access the internet. Splash page is reflecting on user devices but AD credentials are not working properly. If user is typing anything in username and password it is allowing the access to internet which means t is not checking for AD actual credentials and anything which we are typing randomly it is taking that garbage also as a credentials and allowing to the internet access.

 

I have done below mentioned settings.

 

Rohit_Rana_0-1689769549519.pngRohit_Rana_1-1689769786740.png

 

  .

0 Kudos
Subscribe
8 Replies 8
alemabrahao
Kind of a big deal
Kind of a big deal
‎Jul 19 2023 6:30 AM
‎Jul 19 2023 6:30 AM

Can you share your SSID configuration?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
Rohit_Rana
Getting noticed
‎Jul 20 2023 9:52 PM
‎Jul 20 2023 9:52 PM

HI @alemabrahao 

Please have a look at SSID configuration.

 

Rohit_Rana_0-1689915228110.png

 

0 Kudos
Subscribe
In response to Rohit_Rana
alemabrahao
Kind of a big deal
Kind of a big deal
‎Jul 21 2023 3:39 AM
‎Jul 21 2023 3:39 AM

To use splash page your server must be reachable through the Internet.

 

alemabrahao_0-1689935944370.png

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Subscribe
cmr
Kind of a big deal
Kind of a big deal
‎Jul 20 2023 1:43 AM
‎Jul 20 2023 1:43 AM

You have created an outbound rule, is traffic allowed to the radius server from the Meraki APs/cloud etc.?  You need an inbound rule to it.  In terms of the behaviour it is expected as the RADIUS server is unreachable and you have said to allow access if that happens, hence they can type anything.

Subscribe
In response to cmr
Rohit_Rana
Getting noticed
‎Jul 26 2023 1:08 AM
‎Jul 26 2023 1:08 AM

I tried with Inbound rule as well, but still it is behaving in the similar way.

0 Kudos
Subscribe
CameronS
Getting noticed
‎Jul 20 2023 7:06 AM
‎Jul 20 2023 7:06 AM

Have you tried using the Active Directory authentication rather than RADIUS?

Subscribe
In response to CameronS
Rohit_Rana
Getting noticed
‎Jul 20 2023 9:54 PM
‎Jul 20 2023 9:54 PM

Hi @CameronS 

 

Yes , I tried. In AD case , while user was typing username and password , it was showing error "Access Denied" on splash page every time and users were not able to get connected with internet. So i used Radius which is at least allowing to get connected with internet.

0 Kudos
Subscribe
In response to Rohit_Rana
CameronS
Getting noticed
‎Jul 26 2023 1:13 AM
‎Jul 26 2023 1:13 AM

You could try using the AD auth but on the client device, set the network adapter settings for the VPN as below:

 

CameronS_0-1690359180408.png

 

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.