Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Register or Sign in
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About KitCheng
KitCheng
Here to help
Member since Mar 5, 2019
May 10 2022
Community Record
10
Posts
3
Kudos
0
Solutions
Badges
May 5 2022
10:56 AM
2 Kudos
Status update: So, I figured out my problem. Apparently, you should use a different email for your SAML login than your manual. I was using my work email address as the manual logon to the dashboard. Once I change the manual logon to another email address, SSO is now working. Thanks Kit
... View more
May 4 2022
7:40 AM
Hello Adam, Thank you for your post, it was very helpful. I have a question, where should I access the Meraki Dashboard so I can use SSO. When I go to https://dashboard.meraki.com, I have no option to use SSO. I'm told by Meraki that I have to access the dashboard from Azure. So I went to the O365 "MyApp" and access the "Meraki Dashboard" app there. When I do that, I was redirected to Meraki and all I see is the word "true". What am I doing wrong? Your help is much appreciated. Thanks Kit
... View more
Mar 17 2022
12:59 PM
Yes, I changed it and it's working fine now. Thanks for your help.
... View more
Mar 17 2022
7:30 AM
Just want to provide an update. I got it to work. I make sure I have Global Admin right first this time. Then I deleted the app and follow the process to recreate the app in AAD. Meraki Dashboard side, I just have to upload the xml file again and it's working beautifully now. This is the article I followed - https://documentation.meraki.com/MX/AnyConnect_on_the_MX_Appliance/AnyConnect_Azure_AD_SAML_Configuration Again, Meraki MX firmware on 16.15. Had to call Meraki to have them turn on the Cisco AnyConnect SAML feature and then follow the article above to setup the app and configure SAML. Must have Global Admin right. Thanks Kit
... View more
Mar 17 2022
5:24 AM
Hi PhilipDAth, Just want to give you an update. I reached out to Meraki and they turned on the feature for us same day. Hopefully this will help others in the future. Thanks for your help. Just wondering if you can help with the next problem I am facing. When I use AnyConnect to connect to my VPN, I can tell SSO (or SAML) is working but I am hit with the message: "AADSTS700016: Application with identifier 'https://xxx.xxxxxx.com/saml/sp/metadata/SAML' was not found in the directory 'XXX'. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant." Any idea? Thanks Kit
... View more
Mar 15 2022
2:05 PM
1 Kudo
Oh so this is something Meraki has to turn on from their end? All my MXs are on 16.15. This gives me hope. Thank you Kit
... View more
Mar 15 2022
1:51 PM
Hello PhilipDAth, I am also trying to setup SAML to my AnyConnect vpn client. My problem is that when I go to the AnyConnect page, I don't even have the SAML option under Authentication and Access. I only have RADIUS, Meraki Cloud Authentication and Active Directory. I would like to use SAML with Azure AD. Have you seen this issue before? Any help would be greatly appreciated. Thanks Kit
... View more
Mar 6 2019
7:20 AM
Hello PhillpDATh, Thanks for your reply. I believe you and it actually make sense but can you point me to any Microsoft document or article that talks about this? It will help me in presenting and explaining to the group when I tell them cant' be done. Thanks Kit
... View more
Mar 5 2019
12:24 PM
Hello All, We have a hybrid network, on prem and Azure connected with a site to site VPN. Both side is a MX100, of course the vMX100 on Azure side. We have vpn clients connecting to the on prem MX100 for a few years now and everything works fine. They can access the network resources and get to the internet. They can even connect to the on prem MX100 and access resources in Azure. Recently, we have setup a vMX100 as the gateway in Azure. We are now trying to switch vpn users to hit the vMX100 instead of the on prem one. All (except for 2 DCs) of our resources have been moved to Azure so we want to users to go Azure first and remove the on prem as a critical path to the production resources. However, when we connect to the vMX100, we can access all network resources, even get all the way back to the on prem resources, but cannot get out to the internet. I've match the vpn settings on the vMX100 and the MX100. All the routes and network security group look right. I'm lost. Any help is greatly appreciated. Thanks Kit
... View more
My Top Kudoed Posts
© 2024 Cisco Systems, Inc.
