The Meraki Community
Register or Sign in
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About KitCheng
KitCheng

KitCheng

Here to help

Member since Mar 5, 2019

‎05-10-2022
Kudos from
User Count
lesliebright
lesliebright
1
PhilipDAth
Kind of a big deal PhilipDAth
2
View All
Kudos given to
User Count
PhilipDAth
Kind of a big deal PhilipDAth
1
View All

Community Record

10
Posts
3
Kudos
0
Solutions

Badges

First 5 Posts
Lift-Off View All
Latest Contributions by KitCheng
  • Topics KitCheng has Participated In
  • Latest Contributions by KitCheng

Re: Meraki Single Sign-On (SSO) integration with Azure AD. Including granul...

by KitCheng in Dashboard & Administration
‎05-05-2022 10:56 AM
2 Kudos
‎05-05-2022 10:56 AM
2 Kudos
Status update:   So, I figured out my problem.  Apparently, you should use a different email for your SAML login than your manual.  I was using my work email address as the manual logon to the dashboard.  Once I change the manual logon to another email address, SSO is now working.   Thanks Kit ... View more

Re: Meraki Single Sign-On (SSO) integration with Azure AD. Including granul...

by KitCheng in Dashboard & Administration
‎05-04-2022 07:40 AM
‎05-04-2022 07:40 AM
Hello Adam, Thank you for your post, it was very helpful. I have a question, where should I access the Meraki Dashboard so I can use SSO. When I go to  https://dashboard.meraki.com , I have no option to use SSO. I'm told by Meraki that I have to access the dashboard from Azure. So I went to the O365 "MyApp" and access the "Meraki Dashboard" app there. When I do that, I was redirected to Meraki and all I see is the word "true". What am I doing wrong? Your help is much appreciated.   Thanks Kit ... View more

Re: AnyConnect SAML authentication

by KitCheng in Security / SD-WAN
‎03-17-2022 12:59 PM
‎03-17-2022 12:59 PM
Yes, I changed it and it's working fine now.  Thanks for your help. ... View more

Re: AnyConnect SAML authentication

by KitCheng in Security / SD-WAN
‎03-17-2022 07:30 AM
‎03-17-2022 07:30 AM
Just want to provide an update.  I got it to work.  I make sure I have Global Admin right first this time.  Then I deleted the app and follow the process to recreate the app in AAD.  Meraki Dashboard side, I just have to upload the xml file again and it's working beautifully now.   This is the article I followed - https://documentation.meraki.com/MX/AnyConnect_on_the_MX_Appliance/AnyConnect_Azure_AD_SAML_Configuration   Again, Meraki MX firmware on 16.15.  Had to call Meraki to have them turn on the Cisco AnyConnect SAML feature and then follow the article above to setup the app and configure SAML.  Must have Global Admin right.   Thanks Kit ... View more

Re: AnyConnect SAML authentication

by KitCheng in Security / SD-WAN
‎03-17-2022 05:24 AM
‎03-17-2022 05:24 AM
Hi PhilipDAth,   Just want to give you an update.  I reached out to Meraki and they turned on the feature for us same day.  Hopefully this will help others in the future.  Thanks for your help.   Just wondering if you can help with the next problem I am facing.  When I use AnyConnect to connect to my VPN, I can tell SSO (or SAML) is working but I am hit with the message:  " AADSTS700016: Application with identifier ' https://xxx.xxxxxx.com/saml/sp/metadata/SAML'  was not found in the directory 'XXX'. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant. "   Any idea?   Thanks Kit ... View more

Re: AnyConnect SAML authentication

by KitCheng in Security / SD-WAN
‎03-16-2022 05:12 AM
‎03-16-2022 05:12 AM
Thanks.  I'll call Meraki today. ... View more

Re: AnyConnect SAML authentication

by KitCheng in Security / SD-WAN
‎03-15-2022 02:05 PM
1 Kudo
‎03-15-2022 02:05 PM
1 Kudo
Oh so this is something Meraki has to turn on from their end?  All my MXs are on 16.15.  This gives me hope.   Thank you Kit ... View more

Re: AnyConnect SAML authentication

by KitCheng in Security / SD-WAN
‎03-15-2022 01:51 PM
‎03-15-2022 01:51 PM
Hello PhilipDAth,   I am also trying to setup SAML to my AnyConnect vpn client.  My problem is that when I go to the AnyConnect page, I don't even have the SAML option under Authentication and Access.  I only have RADIUS, Meraki Cloud Authentication and Active Directory.  I would like to use SAML with Azure AD.  Have you seen this issue before?  Any help would be greatly appreciated.   Thanks Kit ... View more

Re: VPN clients cannot get out to the internet

by KitCheng in Security / SD-WAN
‎03-06-2019 07:20 AM
‎03-06-2019 07:20 AM
Hello PhillpDATh,   Thanks for your reply.  I believe you and it actually make sense but can you point me to any Microsoft document or article that talks about this?  It will help me in presenting and explaining to the group when I tell them cant' be done.   Thanks Kit ... View more

VPN clients cannot get out to the internet

by KitCheng in Security / SD-WAN
‎03-05-2019 12:24 PM
‎03-05-2019 12:24 PM
Hello All,   We have a hybrid network, on prem and Azure connected with a site to site VPN.  Both side is a MX100, of course the vMX100 on Azure side.   We have vpn clients connecting to the on prem MX100 for a few years now and everything works fine.  They can access the network resources and get to the internet.  They can even connect to the on prem MX100 and access resources in Azure.   Recently, we have setup a vMX100 as the gateway in Azure.  We are now trying to switch vpn users to hit the vMX100 instead of the on prem one.  All (except for 2 DCs) of our resources have been moved to Azure so we want to users to go Azure first and remove the on prem as a critical path to the production resources.  However, when we connect to the vMX100, we can access all network resources, even get all the way back to the on prem resources, but cannot get out to the internet.   I've match the vpn settings on the vMX100 and the MX100.  All the routes and network security group look right.  I'm lost.  Any help is greatly appreciated.   Thanks Kit ... View more
Kudos from
User Count
lesliebright
lesliebright
1
PhilipDAth
Kind of a big deal PhilipDAth
2
View All
Kudos given to
User Count
PhilipDAth
Kind of a big deal PhilipDAth
1
View All
My Top Kudoed Posts
Subject Kudos Views

Re: Meraki Single Sign-On (SSO) integration with Azure AD. Including granul...

Dashboard & Administration
2 2394

Re: AnyConnect SAML authentication

Security / SD-WAN
1 3630
View All
Powered by Khoros
custom.footer.
  • Community Guidelines
  • Cisco Privacy
  • Khoros Privacy
  • Privacy Settings
  • Terms of Use
© 2023 Meraki