TLS Support in Meraki AP to connect to LDAP when using Local Auth

alextsang010778
Here to help

TLS Support in Meraki AP to connect to LDAP when using Local Auth

Hi all

 

I tried to configure the local auth in the Meraki AP with password authentication, so we configure the LDAP Servers in the local auth to verify the AD username and password. But the authentication test in the LDAP configuration failed, and it said no response from LDAP server.

 LDAP Test.png

 

Then I do packet capture to see what's wrong, and I found that the AP negotiate the LDAP server with SSL only, but those ciphers are disabled in the LDAP and only TLS1.2 is supported. So anyone know it is by design or how to change it to support TLS (I use LDAP browser to connect with the LDAPs and do packet capture, and the result is success and can see TLS1.2 negotiated.

 

LDAP Capture.png

 
 
 

At last, I found that the local auth with password authentication cannot support with WPA2 only. Is it by design too?

 

Best regards

3 Replies 3
alemabrahao
Kind of a big deal
Kind of a big deal

Have you checked this article?

 

https://documentation.meraki.com/MR/Encryption_and_Authentication/Meraki_Local_Authentication_-_MR_8...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
alextsang010778
Here to help

I follow this KB for the local auth authentication.

alemabrahao
Kind of a big deal
Kind of a big deal

I suggest you to open a case with Meraki team support.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels