Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
The Meraki Community is Moving
We're migrating to the Cisco Community on March 29. The Meraki Community will enter read-only mode starting on March 27.
Learn more- About Jhippleheuser
About Jhippleheuser
Jhippleheuser
Here to help
Member since Jan 19, 2022
4 hours ago
Community Record
13
Posts
5
Kudos
1
Solution
Badges
3 hours ago
Switch is MS130-24P and we're using Meraki. It's full stack Meraki so MX68 - MS130-24P - CW9172I
... View more
4 hours ago
I'm having issues with trying to migrate from my old system of a "poor mans NAC" to using Access Manager, and trying to keep my networks secure. Long story short I've got it pretty much all figured out but right now I have my access points connected to port 8 which is set to Trunk. Theoretically a bad actor could walk in, unplug the access point, and use that Trunk port to get unrestricted access to the network. In the past we plugged that hole by applying a deny-all rule to our production VLAN, then let devices in using systems manager and group policies. The problem here is apparently device policies, and 802.1X policies are not the same and are both active at the same time? I was trying to use Access Manager to apply an authorized access group policy to devices but they're still being affected by the deny-all group policy applied to the production VLAN. Is there an easier way to prevent someone from simply unplugging our access point and gaining access to our network?
... View more
3 weeks ago
That's what I have been doing, just a little verbose when we have over 100 orgs. Oh well, I don't mind hand jamming
... View more
3 weeks ago
Casually googling, and looking through the listed APIs make me think this call might not exist but is there any way to leverage the API to show me if I have L2TP/IPSec and/or Secure Client VPNs enabled?
... View more
Jan 9 2026
5:28 AM
2 Kudos
One last update in case this helps anyone in the future. I've found the reason why my Lenovo T480 laptops were failing. For any laptops that use either the Wireless-AC 8265 or 8260 NICs there is a bug with how windows handles key delivery to the NIC using the latest drivers. I wasn't able to test with older drivers because I couldn't find them but the next easiest solution was to go into the registry and modify the key at HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Cryptography\Configuration\Local\SSL\00010003 Open the key and remove the following signatures: RSAE-PSS/SHA256 RSAE-PSS/SHA384 RSAE-PSS/SHA512 After deleting those signatures and rebooting the computer it worked flawlessly
... View more
Jan 8 2026
6:18 AM
2 Kudos
So turns out my test laptop just will not for some reason authenticate. Grabbed a brand new laptop, joined it via intune, it has the exact same Root, Intermediate, and it's own leaf certificates and it authenticated right away. When I check the logs the computer that is authenticating correctly shows it's username as what's in the subject common name field but the computer that's failing is showing it's username as what's in the SAN: DNS field and I'm currently trying to figure out why that's happening but you were right, it was a computer issue and nothing to do with the configs as far as I can tell.
... View more
Jan 6 2026
6:01 AM
I just set up a brand new Windows 11 machine and I'm seeing the same result. It's completely fresh OOB with no intune joining and all updates are complete
... View more
Jan 5 2026
6:11 AM
The problem I'm running into is in that screenshot under "Trusted Root Certification Authorities" I'm only able to select one, and not multiple. If I select my custom root CA, and the IdenTrust root CA one of them will be de-selected when I go back into the settings
... View more
Dec 24 2025
6:40 AM
So I've noticed that on my personal laptop I'm able to select multiple trusted CAs but on any of my intune-joined laptops I can select multiple but when I go back in to verify the settings only one will stay selected. I went and disabled verifying the servers identity and I'm still getting a TLS handshake failure. In my cert manager under local computer > personal > certificates I have several certificates for client auth. How do I go about selecting which certificate I want my laptop to present?
... View more
Dec 23 2025
11:24 AM
Edit: I might be dumb but I think this is an issue with the laptop being intune-joined I feel like I'm going crazy trying to enable cert-based auth for my test network because I keep going into my advanced wifi settings and trying to do what's shown below and I can't get more than one Trusted Root CA enabled at a time. If I select two, and click OK one of them just de-selects and I think that's the reason why I'm running into a TLS handshake problem when I attempt to connect. Anyone else having this problem?
... View more
Dec 17 2025
7:55 AM
Hey Philip, Would you mind giving me some insight because I'm trying to achieve the same thing but I'm having a heck of a time getting everything to work together. So far I've been able to push down my trusted certificate profiles to a test computer but the SCEP is failing for some reason
... View more
Dec 9 2025
12:21 PM
1 Kudo
Does anyone know if Sentry is being discontinued along with Systems Manager? We rely heavily on Sentry policies to apply group policies to our devices and allow them internet access and if that's going away along with Systems Manager then I need to find a new solution
... View more
Labels:
- Labels:
-
Other
My Accepted Solutions
| Subject | Views | Posted |
|---|---|---|
| 1409 | Jan 9 2026 5:28 AM |
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 2 | 1409 | |
| 2 | 1431 | |
| 1 | 1377 |
© 2026 Cisco Systems, Inc.
