So I spent some time playing with the client VPN today and I have a couple concerns that I wanted to bring up: Authentication using Meraki Authentication: Understanding that I can use RADIUS or Active Directory, when using Meraki Authentication for VPN, it is not possible (that I have found) to force strong passwords to the registered users. If you can set strong passwords for Dashboard access in your organization, why can't you do the same for Client VPN? Seems odd. Blocking VPN clients: If a user VPNs in, the client shows up either via MAC/IP address. If I block that MAC/IP address, only that particular MAC/IP address is blocked. A user can simply VPN in on a different machine and get in. Sure you can disable them via AD/Radius/Meraki Authentication, but that defeats the whole purpose of blocking the client in dashboard. Additionally in the case of AD, I simply want to stop their VPN ability without taking away their rights in AD. Any thoughts?
... View more