You would need a RADIUS server (or service) that supports Google push notifications.  Possibly you could use something that let the user enter their password and a code. I'm not aware of any that do either of these.   Cisco Duo is popular for this solution, but you need a backend Active Directory or RADIUS. ... View more

> release notes for new releases of Windows/macOS agents can be found here:    This is a great step forward!  But don't stop ...   Meraki users are not "trained" to look at the documentation site for release notes.  Users wanting this info will fail to find it.  You need to get this link onto the Firmware update page somehow (where all other release notes are published).  In this section, perhaps labelled "SM".     ... View more

> how can I share this via social?   If you right-click on the video you can select "Copy this video address".   UPDATE: Scratch that.  Just tested and it copies the wrong address. ... View more

There are two cases here.   You can request an RMA due to hardware failure.  In this case, you get a replacement device and your licence is unaffected.   You can request an RMA for return (not replacement).  This can occur in some cases with trials, with a cancelled order within a specific time frame, etc.  This cancels the licence as well.  You don't end up with a device.   You get another special category is when you have an older device and it gets RMA'd with a newer device, and the licence has to get changed from the old device to the new.  e,g. MX64 ends up getting replaced with an MX67 under RMA.     If you requested an RMA for hardware replacement - then it sounds like the wrong type of RMA was keyed.  You should not have gotten a replacement device though.  It may be a case of checking the type of RMA requested with support.   Otherwise - the licence was correctly cancelled. ... View more

The lack of records in the event viewer is usually related to the Windows audit policy on that machine.  Audit policy needs to be enabled to see the records. https://docs.microsoft.com/en-us/windows/security/threat-protection/auditing/audit-network-policy-server    ... View more

What does the local status page say the issue is? https://documentation.meraki.com/General_Administration/Tools_and_Troubleshooting/Using_the_Cisco_Meraki_Device_Local_Status_Page    Does it show that the MX is getting an address via DHCP?     The factory reset is a good option to try as well.   Do you have any other Internet connection you could plug the MX into to test if it can come online?  You can just plug the WAN port into the LAN port of an existing system. ... View more

> I assume we can use our existing MX100?    Yes.  The 2nd MX would go behind your existing MX100 and use the same Internet connection. You would give it a dedicated Internet connection if you wanted but that is not a requirement.   For your MX100, the static routes to the remote org would be via the private IP on the MX running in VPN concentrator mode sitting behind your MX100. So if your MX had a LAN IP of 192.168.100.1, and the unit in the other org was 192.168.100.2, your static routes would be via 192.168.100.2.   Yes, you would include the static routes in VPN.   Yes, the other org would do exactly the same thing as you, but mirrored. ... View more

The only other thing I can think of is the AP firmware version.  We are using fairly recent firmware.  Maybe give that a change. ... View more

Could be worse.  You could have an MS390. ... View more

This smells like a duplex mismatch error to me.   Are you sure the switch ports are configured auto/auto and the client is configured auto/auto? ... View more

It is highly improbably you'll be able to have more than 2 interfaces activate at a time.  The USB cellular has always been for failover only.   The appearance of additional interfaces will be so you can connector copper OR fibre but not both at the same time.  More than likely, they will simply be a dual personality port.   Do not expect to have more than two uplinks operational at a time.  The entire Meraki software system is built around this concept.  It is not something Meraki could simply change. ... View more

I haven't done a routed mode configuration, so this is my guesses.   The LAN IP of the VMX must match the address assigned by Amazon.  This would be compulsory.   Your VPC would need a return route pointing to the VMX LAN IP. If the VMX needs to communicate to subnets outside of the current VPC subnet it is in, you would need to add a static route on the VMX pointing to the VPC default gateway for that subnet.  An easy way to do this is to check another EC2 instance in the same subnet and see what it is using for its default gateway. ... View more

I would use the method you are describing. ... View more

I have not seen anything around an API for Meraki Insights. ... View more

This would be painfull.   Have a look at ipsec tag-based failover and see if that suits your needs. https://documentation.meraki.com/MX/Site-to-site_VPN/Tag-Based_IPsec_VPN_Failover    Personally, I would avoid this configuration.  I would try and resolve this by putting in more MXs and using AutoVPN.  Even if you need to put an MX in at a partner site (in VPN concentrator mode - like a WAN router), because at least then you can use simple static routes between it and the partner. ... View more

You could try opening a ticket with Meraki to join the IPv6 beta, and then submit the feedback directly to the beta team. ... View more

Choose a transit site (data centre, head office, etc).   Put an MX from one org there, and a second MX in VPN concentrator mode from the other org.  Configure static routes between them for the other orgs sites and redistribute these into AutoVPN (for both orgs).   Voila.  Both orgs can now talk to all sites. ... View more

It's probably easiest to turn off AutoReconnect with the profile editor.       ... View more

From my experience, Meraki devices generate about 100MB of telemetry data per month.   So if you had an MG21E with an MX plugged into it for backup, I would expect to see 200MB of usage per month if the link is never used for actual data. ... View more

Yes we are using it.   Are the clients you are trying to track visible from 3 or 4 APs at the same time? Have you loaded a floor plan and put it on the map and the APs on the floor plan? ... View more