I have had a bunch of small issues with the firewalls in the past, but nothing that is insurmountable with some good old fashion proverbial IT Duct tape. I can even understand the " that's not how we do things, unify and Meraki everything" attitude.   Here is where my real issue lies. Every time windows 10 has a major update it decides that unencrypted PAP is horribly insecure ( because it is ) and sets the security for the vpn to MSCHAPv2. Folks can no longer connect to the mothership. I have to remote in and fix. EVERY SINGLE LAPTOP. Every single time. I have called Meraki support like 5 times. They shrugged their shoulders and acted like it was Microsoft's fault for pointing out glaring security flaws. I tried a different approach each time, asking about GPOs, registry keys, third party apps, crying, nothing but shoulder shrugging and blaming Microsoft. How do you guys deal with a modern mobile work force and these Meraki MX's ?    Yes I know that the packet is encrypted. Windows 10 is still not cool with the janky work around.    I added my personal laptop into the wsus test container to see when it breaks so I can prepare for the mayhem. Then I have to reach out to everyone with a laptop and schedule them leaving it on or dropping it by. " Hey C level employee, I need to do this again .... " " I thought we spent licensing money to make your life easier ? This never happened with the Cisco stuff. You haven't needed to touch my laptop for years due to your rad skills. " " Yeah I know, I made a bad decision " " When are they going to fix it ? " " They said to make a wish " Repeat conversation with every employee with a laptop. Half of they yeah yeah me and don't bother until they need a report at 9PM and harrass me on my cell phone.   It has gotten slightly better now that I created a powershell script to remove old vpn and create a new one with PAP so we can still party like its 1999. Still a really bad option as I have to catch the laptop online.     ... View more