Meraki

Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

TLS Support in Meraki AP to connect to LDAP when using Local Auth

alextsang010778
Here to help
‎Sep 28 2022 12:22 AM
‎Sep 28 2022 12:22 AM

TLS Support in Meraki AP to connect to LDAP when using Local Auth

Hi all

 

I tried to configure the local auth in the Meraki AP with password authentication, so we configure the LDAP Servers in the local auth to verify the AD username and password. But the authentication test in the LDAP configuration failed, and it said no response from LDAP server.

 LDAP Test.png

 

Then I do packet capture to see what's wrong, and I found that the AP negotiate the LDAP server with SSL only, but those ciphers are disabled in the LDAP and only TLS1.2 is supported. So anyone know it is by design or how to change it to support TLS (I use LDAP browser to connect with the LDAPs and do packet capture, and the result is success and can see TLS1.2 negotiated.

 

LDAP Capture.png

 
 
 

At last, I found that the local auth with password authentication cannot support with WPA2 only. Is it by design too?

 

Best regards

3 Replies 3
alemabrahao
Kind of a big deal
Kind of a big deal
‎Sep 28 2022 5:40 AM
‎Sep 28 2022 5:40 AM

Have you checked this article?

 

https://documentation.meraki.com/MR/Encryption_and_Authentication/Meraki_Local_Authentication_-_MR_8...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
alextsang010778
Here to help
‎Sep 28 2022 7:13 AM
‎Sep 28 2022 7:13 AM

I follow this KB for the local auth authentication.

0 Kudos
In response to alextsang010778
alemabrahao
Kind of a big deal
Kind of a big deal
‎Sep 28 2022 7:16 AM
‎Sep 28 2022 7:16 AM

I suggest you to open a case with Meraki team support.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.