https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Active_Directory_Integration#Integrating_with_Client_VPN Traffic Flow When a user attempts to connect to Client VPN, the following process occurs: The user's device attempts to establish a VPN tunnel using L2TP over IP. The user provides their valid domain credentials. The MX, from its LAN IP, queries the Global Catalog over TCP port 3268 (encrypted using TLS) to the AD server configured in Dashboard. If the user's credentials are valid, the AD server will send its response to the MX, completing authentication. The MX offers the client an IP configuration on the Client VPN subnet, and the client can start communicating on the network.
... View more
