Which parts? In my previous research, it referred to installing a TLS Cert on the server, but the instructions are pretty vague on how to do that, as are the instructions in the link. Other search results I've found refer to installing IIS to generate a self-signed cert. But then what? I am not very "up" on generating and installing certs. The server is on the same LAN as the Meraki and the Meraki can communicate with the AD server just fine.
... View more
I am trying to configure AD Authentication on an MX67 with firmware 17.10.2 so I can have clients that connect to the Client VPN to authenticate via our on-prem Active Directory Server. I have put in my correct AD information (shown below), but I keep getting the WMI error message. On the server in Event Viewer, I get this Event ID 10036: The server-side authentication level policy does not allow the user PWL\PWLAdmin SID (S-1-5-21-2010977204-1741935109-2524261170-500) from address 192.168.1.1 to activate DCOM server. Please raise the activation authentication level at least to RPC_C_AUTHN_LEVEL_PKT_INTEGRITY in client application. And I have tried to edit the permissions in dcomcnfg.exe to allow the DCOM Users group, but still get the WMI message and event viewer message shown here. PWLAdmin is the default administrator on the server, just renamed. I have even tried a new user account that is a member of Domain Admins. Same situation. I have made absolutely certain that the settings in the screenshot are correct for our on-prem AD server.
... View more