Can someone help me with the topic of subscription in which if the customer adds more hardware to his existing subscription model with license and the customer has around 10 months until their subscription model is ending. My understanding ist that the customer will be paying in this case only for the 10 months to the added license rather than the full term like in the case of co-term and in this way the end date remains the same and they can extend the licenses in one go? ... View more

I would like to briefly describe the issue: • Our customer had an IPSec VPN connection set up by Noris Network to retrieve emails from an on-premises Exchange server to the iPhones of UmweltBank. • Authentication should be done both via a distributed certificate on the iPhones (distribution works) and through login with AD user credentials (UPN) and corresponding password. They have created a VPN profile in Meraki SM (see screenshot). How can they get the UPN of the AD user (= OwnerUsername in SM Owners) into these settings? A variable like $OWNEREMAIL or $OWNERUSERNAME does not work. Additionally, the VPN connection should be Always On and should not disconnect every time the iPhone is locked. Re-establishing the VPN connection or having to enter the password each time the iPhone is unlocked is not practical.         The VPN connection works in general; it’s set up on the admins iPhone and he can retrieve emails after entering his UPN and password. ... View more

Posting here again if Secure Connect was not the correct section for this post.   One of our customers is fixed to the following solutions offered from Sophos and would be interested to know if we can cover them using a Meraki Firewall and if needed pairing it with Meraki's Secure Connect/Cisco Security/ Duo etc. The following are the features doable using Sophos. I would wish this is possible with Meraki, if not would wish alternative solutions which could cover these features below.   Sophos can do this. Can Meraki do it as well??   a)  Using network masking to create DNAT rules b) presence of a transparent proxy c) Sophos RED has a (permanent) connection to external service providers and it restricts access to SQL database stored in the main office and may only give access to trusted people.   The following points are additionally required by the customer and expected from Meraki   d) Can Meraki function fully as a web application firewall? e) Can Meraki provide Live firewall protocol for problem analysis? @Daniel-BC  ... View more

One of our customers is fixed to the following solutions offered from Sophos and would be interested to know if we can cover them using a Meraki Firewall and if needed pairing it with Meraki's Secure Connect/Cisco Security/ Duo etc. The following are the features doable using Sophos. I would wish this is possible with Meraki, if not would wish alternative solutions which could cover these features below.   Sophos can do this. Can Meraki do it as well??   a)  Using network masking to create DNAT rules b) presence of a transparent proxy c) Sophos RED has a (permanent) connection to external service providers and it restricts access to SQL database stored in the main office and may only give access to trusted people.   The following points are additionally required by the customer and expected from Meraki   d) Can Meraki function fully as a web application firewall? e) Can Meraki provide Live firewall protocol for problem analysis? @Daniel-BC  ... View more

  1. The customer has WAN 1 for internet traffic, WAN 2 for VPN, and WAN 3 for their mail gateway server, all of which are fixed configurations. They need a fourth connection to provide redundancy, for example, for WAN 1 traffic. If WAN 1 fails, it should not use the capacity of the existing WANs (Mail Gateway and VPN) but should instead serve as a redundancy for WAN 1. Is this possible with a Meraki firewall? If so, which firewall would be suitable, and how can this be configured via the Dashboard? Can you provide steps to this   2. Is there a way to analyze a website using Meraki? For example, if I input a URL, can it show which category the website falls into? 3. If the connection does not have a fixed IPv4 address or any IPv4 address at all, will it still work, or are there specific requirements? The customer is considering using Starlink as their WLAN provider, which utilizes IPv6. Is this supported by Meraki firewalls?   ... View more

Does Meraki have the capability to integrate with Azure AD for user, password, or group synchronization, especially in scenarios where specific users or groups who dont have VPN should be excluded from VPN access? Is there a feature like Azure Connect available within Meraki for such purposes?  ... View more

My client wants to use Meraki Firewalls along with Cisco Secure Client (Anyconnect) with Always on feature with MFA Duo.   Their question is the following - Would it be possible to configure a Multi-Factor Authentication (MFA with DUO) with Always ON VPN (Any Connect) using a certificate encrypted via TPM?   #Secureconnect #Duo #Secure Client # Meraki ... View more

what all configurations can be done on a Meraki Dashboard when offline, outage etc? Are there any possibilities? Is there a list of rudimentary options what can be used to make changes on the dashboard offline?   Can Switch VLANs be configured in emergency offline? This is possible with Aruba ( one can use the cloud networking as well as offline networking with which the customer is very satisfied) ... View more

Our customer wants to know what protocoll is being used in showing non Meraki products in topology.    The question was if we are using CLLP Protocol (not sure if I am right) or SNMP. He meant here that CLLP shows basic details of the on Meraki product in topology whereas SNMP shows more detail of the product in the topology.     ... View more

Our customer will be using more Azure instead of AD on the computer and would like to use Meraki Radius Server for Authentication. His question was if this comes with a cost or is it free to use.   What Meraki device he should have in his system to begin with using a radius server. He first wants to start with a few Switches and Access Points ... View more

Hi Team,   One of my customers has purchased the following cloud archive licenses LIC-MV-CA90-3Y:  for his cameras but wants the data on the cloud deleted within 3 days automatically due to data protection reasons. Could you please advice how it can be done in Dashboard? Is there a setting that he can change on it. ... View more