Meraki

Community
  • About PhilipDAth

About PhilipDAth

Re: “Network Wide > General > SNMPv3 Privacy Mode” Option to be Temporarily...

by Kind of a big deal in Dashboard & Administration
Thursday
4 Kudos
Thursday
4 Kudos
While you are refreshing crypto ... could you upgrade SAML to support SHA256 fingerprints as well please.     ... View more

Re: Meraki Report generation for 3rd Party Honeywell handheld devices

by Kind of a big deal in Dashboard & Administration
Thursday
4 Kudos
Thursday
4 Kudos
This sample script in the Meraki github dumps all clients in the org to a CSV file.  You could then load these into Excel and filter on the devices you are interested in.   https://github.com/meraki/dashboard-api-python/blob/main/examples/aio_org_wide_clients_v1.py   ... View more

Re: Horrible App authentication experience

by Kind of a big deal in Dashboard & Administration
Wednesday
Wednesday
You have me thinking.  What about if you configure SAML (you can use Entra ID)?  You would use your SAML credentials and SAML MFA, and then the SAML access token would be stored for as long as your SAML provider permits, and you can use biometric authentication on your phone.   A heavy solution for the problem, but it is an option for you.  And if you are heavily regulated, this is likely to tick additional boxes. ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
Have you considered contracting in a Cisco partner to help you with this?  It might be quite quick for them to fix ... ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
My deployments have mostly been on MS120s and MS225s. ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
>Maybe Meraki switches does not support PEAP   Meraki has no knowledge of the internal authentication protocol in use.  That is between the switch and the RADIUS server. ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
I have done lots of wired 802.1x deployments using Meraki switches.  No issue.   All my deployments use Microsoft NPS.  I don't do MAB (no hybrid).  They all do certificate authentication (EAP-TLS). ... View more

Re: High latency for wireless clients

by Kind of a big deal in Wireless
Wednesday
2 Kudos
Wednesday
2 Kudos
>latency from client is high   This smells like client power savings.  What kind of device is this? Does it happen when the client is plugged into the mains?   If this is affecting Windows hosts you can usually disable WiFi power savings with these commands: powercfg /SETDCVALUEINDEX SCHEME_CURRENT 19cbb8fa-5279-450e-9fac-8a3d5fedd0c1 12bbebe6-58d6-4636-95bb-3217ef867c1a 0 powercfg /SETACVALUEINDEX SCHEME_CURRENT 19cbb8fa-5279-450e-9fac-8a3d5fedd0c1 12bbebe6-58d6-4636-95bb-3217ef867c1a 0   ... View more

Re: Horrible App authentication experience

by Kind of a big deal in Dashboard & Administration
Wednesday
2 Kudos
Wednesday
2 Kudos
Have you got biometric authentication enabled in the app (assuming you are using SAML)? https://documentation.meraki.com/General_Administration/Managing_Dashboard_Access/SP-Initiated_SAML_SSO_Configuration_Guide#Logging_in_via_SP-Initiated_SAML_for_mobile   ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
Does anything appear in the Meraki event switch log? ... View more

Re: Can't claim MX device

by Kind of a big deal in Security & SD-WAN
Wednesday
Wednesday
The distirbutor needs to build a list of the companies they have already lent out the kit to, and then ask each of them to unclaim it from their Merai Dashboard. ... View more

Re: Wrong time in dashboard log

by Kind of a big deal in Dashboard & Administration
Wednesday
2 Kudos
Wednesday
2 Kudos
Negative.  It has always been in GMT. ... View more

Re: Meraki Network Topology for Documentation and Non Cisco Switches' Visib...

by Kind of a big deal in Dashboard & Administration
Wednesday
2 Kudos
Wednesday
2 Kudos
LucidChart is a general-purpose diagram tool.  I use this myself.  You can draw diagrams of anything you want.  For example, I can draw a network diagram of a proposed change.   The Meraki Dashboard topology tool shows the network as it is "right now".  You can't add extra notes, information, or non-network related information (perhaps you want to document a data flow, network access requirements, etc).   This is like comparing Microsoft Word to a screenshot. ... View more

Re: Meraki Network Topology for Documentation and Non Cisco Switches' Visib...

by Kind of a big deal in Dashboard & Administration
Wednesday
2 Kudos
Wednesday
2 Kudos
>why create static content, when you can just look in the Dashboard for what's actually there?   As-built documentation.  🙂 ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
If this is for Windows machines, have you enabled the "Wired AutoConfig" service? ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
It may simply be that your client is not attempting 802.1x. ... View more

Re: Meraki Block Page Not Displaying for HTTPS Traffic

by Kind of a big deal in Security & SD-WAN
Wednesday
1 Kudo
Wednesday
1 Kudo
This is the first link that Google bought up. https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Content_Filtering/Content_Filtering_Troubleshooting#Why_is_the_Meraki_block_page_not_displayed.3F   ... View more

Re: High latency for wireless clients

by Kind of a big deal in Wireless
Wednesday
Wednesday
Does Wireless Health report anything interesting? https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Meraki_Health_Overview   Does the issue exist when there are less people on the WiFi?  Aka, does the issue always exist, or only when a lot of people are using it? ... View more

Re: High latency for wireless clients

by Kind of a big deal in Wireless
Wednesday
Wednesday
Have you set the minimum bitrate on the 5Ghz band to 12Mb/s or higher? ... View more

Re: Wrong time in dashboard log

by Kind of a big deal in Dashboard & Administration
Wednesday
Wednesday
Imagine you have networks all around the world, and you are recording the changes from all of these locations.   There is only one sensible option, to record them in GMT.  This is not configurable. ... View more

Re: Blocking Layer 7 in MX not working but Logged

by Kind of a big deal in Security & SD-WAN
Wednesday
Wednesday
I quite like using layer 3 FQDN firewall rules.  Then just block access to the DNS name "youtube.com". ... View more

Re: Meraki Block Page Not Displaying for HTTPS Traffic

by Kind of a big deal in Security & SD-WAN
Wednesday
3 Kudos
Wednesday
3 Kudos
This is expected behaviour.  The MX has no certificate to be able to display an HTTPS page. ... View more

Re: MS Switch Is Unable to Relay 802.1x to Cisco ISE

by Kind of a big deal in Switching
Wednesday
Wednesday
Are you doing certificate authentication?  If so, the packets might be bigger than the MTU and getting dropped.  If so, try adding Framed-MTU to ISE with a smaller value (e,g. 1300). ... View more
My Accepted Solutions
View all
© 2025 Cisco Systems, Inc.