Glad we could help! Splash Access has a fantastic Meraki integration. Give me a shout if you have trouble with setup. ... View more

How are these devices getting Outlook delivered - is it manual or using user/device tags? Can your VPP account still shows up in Systems Manager > VPP and you aren't overprovisioned on licenses for outlook? ... View more

I've found that outlook refuses to install on iOS unless it's on a WiFi network due it it's large size. Have you confirmed that the devices are connected to WiFi? Otherwise, the user can long press on the app and select download anyway.   @DustinA wrote: Then at some point last week, the devices started removing and re-adding Outlook seemingly at random.  Attempting to update maybe? ... View more

Hola,   Disculpas por el mal uso del español. Estoy usando un traductor. Dependerá de cómo apliques estas políticas de grupo. ¿Las estás aplicando manualmente en Meraki Dashboard? ¿O por tipo de dispositivo? ¿O en Active Directory? ... View more

I'm not super knowledgeable about the Secure Connect because I haven't deployed it yet, but I'm fairly sure 2FA challenges would be handled by your IDP provider because that's how it works with AnyConnect, unless you opt to utilize Meraki Cloud Authentication. It entirely depends on the IDP provider to issue MFA challenges. For example, here's how to configure MFA challenges for Microsoft Entra ID in the MS admin portal.    Ref: Meraki Cloud Authentication (Cisco Secure Connect Embedded) - Cisco Meraki Documentation ... View more

Just a heads up - if you are using SecureConnect (fka. AnyConnect) it won't work with configuration templates, only Client VPN. Personally, if you only have a handful of sites, I wouldn't bother with configuration templates especially for such a simple FW configuration. ... View more

I'd reach out to your Meraki sales rep if above is the case to ensure the reseller put in the order. I've experienced this before and the reseller had forgotten to put the order in w/ Cisco. Meraki rep advised me that they had not, and I made some phone calls to the reseller that went as expected 🙂 ... View more

I've found that this community has been far more helpful and active than any other vendor specific forum. The design and layout are really helpful and easy to work with. The community all stars are great and extend a helping hand at all costs - and they get rewarded for it (even it is just a silly badge, it's a neat touch that I'm sure brings them back here to help users). ... View more

I don't believe so, but you can force the device to always have WiFI on. Seems more like an acceptable use policy problem than an MDM problem if the force WiFi on doesn't work for you.   Systems Manager>Settings>Select Profile>Settings Payload>iOS>Restrictions>Force WiFi power on.   Force Wi-Fi on iOS 13 iPadOS 13.1 Yes Users can’t turn off Wi-Fi in: Settings Control Centre Airplane Mode (can still be turned off) Users can still select which Wi-Fi network to use. Default is off. From Apple Config guide  ... View more

Are you utilizing Certificate authentication?   If so - where is it pointing in the AnyConnect profile xml? ... View more

Hey @KH,   Apologies for the delay. Took a while to attempt again, but we are getting:   "Unbinding Failed!' Selected Networks failed to unbind from template XXXX as some of the configurations could not be retained."   The actual unbind post request gets returned for 400 (Bad Request)   From my understanding with talking to support there is not a configuration retention issue preventing the unbinding, but a known sync issue with dashboard that is still unresolved for a number of networks. I'd personally prefer not to nix the whole thing and rebuild as that would require substantially more downtime and this is the FW at our main DC. But I'm also lazybones. 😉   I've got HAR captures, and screenshots of all of this in the case w/ support. Shoot me a PM and I can send you the case number if you wanted to take a look. ... View more

Thanks for following up! This is great info. ... View more

I have an open support case that has been marked as "support action pending" due to the bug? with dashboard. If I can recall, no config validation problems occurred, and support had mentioned that it was a known issue according to development. Just wondering if anyone in engineering has more info on when this can be resolved, or should I attempt to see if I can get a refund for AnyConnect licensing.   Shoot me a DM and I can send you the case number if you have a chance to look at it 😁 ... View more

ユーザー名は、その人の電子メール アドレスである必要があります。ローカル ユーザーについて話している場合は、変更できないと思います。 ... View more

Assuming Windows ARM64?   I found it here.  ... View more

Have you tried contacting Meraki support yet? I would definitely do so as this issue may be out of your control and could require an RMA.   Support Contact Info          ... View more

Awesome job y'all. It was cool seeing so many answered topics with great discussion points floating around. ... View more

Will be a small pin hole on the front that labeled "reset".   You will have to use a paperclip or the like to push it in and hold it for 10-15s. ... View more

You can find snort rule updates in the event log.   Search for: Event type include "Intrusion detection rules update"   There you should find the snort_rules_version_value. ... View more

Simple answer to both thoughts is I wouldn't.   if we can make it secure enough, can we connect that VM to a shared printer  on a different VLAN instead of dedicating one to it, given it's only being used once in a blue moon? Too complex but could reasonably be configured with strict ACL's but that's a little difficult and still potentially leaves security risks if you are unsure of what you're doing. If we can make it secure enough, allow RDP-ing into that VM (with only RDP traffic allowed) I'm pretty sure CVE-2019-0708 would work on Windows Server 2000 and an EOL patch was not released, allowing RCE on that box where a threat actor could easily pull the AD creds of users and further exploit your environment. I would not recommend this.   My recommendation is to use Brash/CMR's solution as it will be the simplest to implement. I would advise engaging VMWare support if you are unfamiliar with the VMWare networking management portion.   And of course, while I completely understand (been there), I would be remiss if I didn't recommend engaging with your stakeholders to move away from utilizing Windows Server 2000 in production for reasons I'm sure you are well aware of. 😁     ... View more

Right - or USB passthrough was my second thought. No idea what support for that looks like on Server 2000 though...   My other thought is do users need to access this server? If so, OP's proposed solution will not work, and the server will only be accessible through VMRC... ... View more

Should just need DNA license.    To utilize Cloud Monitoring, all Catalyst switches that will be added to the Meraki Dashboard must have an active DNA Essentials or DNA Advantage license.   Page 3 covers conversion requirements: https://meraki.cisco.com/wp-content/uploads/2023/05/quick-start-migrating-switching-DNA-management-mode-to-meraki-management-mode-1.pdf ... View more

Cloud Monitoring for Catalyst Onboarding documentation    To utilize Cloud Monitoring, all Catalyst switches that will be added to the dashboard must have an active DNA Essentials or DNA Advantage license ... View more