Posting if this helps others, upgrading MX units to 18.105 which only have cellular/4G internet (ie, no ethernet internet connectivity) there appears to be a bug which the unit reports on the dashboard as upgraded to 18.105 however the device goes offline for 15 minutes every 2 hours. Meraki support engineer confirmed the device was stuck in a upgrade loop and was actually still running 17.10.2 firmware even though the dashboard says its updated. Telling the MX to reboot via the web dashboard 'fixes' the issue for a few hours before it comes back again. The actual fix is to pull the power out of the MX and reconnect, the hard power off/on appears to force it to update correctly. ... View more

You're right. Branch locations have their own root priority. I also found a problem in a branch location that had been ignored - now fixed. Thanks for your help. Steve ... View more

At the scale of 500 employees - I consider AnyConnect to be pretty cheap.  Have you priced it up yet? ... View more

It’s not PPT, but in the end it’s all in the documentation: https://documentation.meraki.com/MR ... View more

What, "It does not work" is not a valid failure description? I have to deal with that over and over (even from IT personal) ... 😉 ... View more

That's far fetched but someone 'could' be exploiting  CVE-2022-33279 which 29.5.1 fixes ,but the odds are very very slim. ... View more

i didn't even know there was a hamburger menu, but it works! ... View more

Thank you for all your help. Appreciate it. ... View more

Monitoring Catalyst 9800 from Dashboard was also published during Live, I think. https://community.meraki.com/t5/Wireless-LAN/Join-the-Early-Field-Trial-Cloud-Monitoring-for-Catalyst/m-p/184289 ... View more

The Early Access API has access to the health-scores: https://developer.cisco.com/meraki/api-v1/#!get-network-wireless-client-health-scores ... View more

Perhaps its an UI thing, what does an -CL "look like" .. ? 🙂 But yeah, I also "lied" on my form 🙂 . If needed I will dig up a proper HW from somewhere. ... View more

A good suggestion , but , ehh ,,, I use these APs right now for "special" cases, where there is not really a "wallplate" / hole behind the AP. Or .. let me rephrase, there is a small "gab" behind the AP, but not big enough to use the "in-box" jumper cable. Lets just say its pure metal behind the AP and im not allowed to make holes in that metal 🙂 ... View more

We have pretty much the same setup as @AdBurl. Recently added CW9166 to our fleet with MS355 Mgig switches.  We thought .. why not might as well get the mgig switches too.  All new locations will go this way too.  If you have the budget you might as well. ... View more

In this case he only knows this for his own machines. But unless *all* devices support EAP-TLS (I haven't seen this on any network) he can't make sure that the user connects with domain-credentials from his personal PC. But I am completely with you that relaxing the requirements is the right way. Really achieving *this* goal is one of the hardest in the .1X implementation. ... View more

Well remembered @KarstenI, I forgot the detail, the IP of the VLAN with the highest ID is used. ... View more

If the other switch supports either CDP or LLDP then it will show up as a diamond icon in the topology of the network. ... View more

Solo para confirmar esa regla que acabas de crear debe de ir agregada a una vlan para que a los usuarios les aplique las Politicas de grupo. No se puede enviar mensajes a los usuarios a menos de que ocupes Endpoint Managment SM, de esa manera tendras las gestion del equipo aplica para (IOS, WINDOWS, ANDROID, OS) ... View more

@KarstenI Cool, understood, so the end game is free SM end points (all except Windows OS) so that Trusted Access works "for free so to speak" and the APs are in the same DO so the 2 things "hook up" together - got it! Genius!  ... View more

Not sure. On a quick search I don't see any open bugs on it. Probably best to open a Support case so they can file one (if one doesn't already exist). ... View more

Every month these posts remind me of what a gem this forum really is.   Congrats to all of the great contributors and especially our MoMs! ... View more

I didn't do that before but I Think For the Access point, yes you can change the device  because the license is not changed based on AP type such as  LIC-ENT-3YR  but you should remove the old AP from the dashboard and add the new one    For MX Lic depend on device type LIC-MX95-SEC-3Y   for MS is more restriction as it depends on the model and its ports LIC-MS225-24P-xYR     ... View more

Okay. Thanks for the replies.  ... View more

Ventev does good work. We have often used enclosures from them. ... View more

Thanks @cmr  @alemabrahao .     ... View more