Hi,
I'm testing two Meraki switches and two access points. Got two SSID configured, and one is using 802.1x with Windows server 2016 NPS and this works well.
Got another SSID that is intended for Guest access and is open and I'm using a different device for captive portal to allow access. Able to get the right IP address (from the device used for captive portal) on the right VLAN however I can't seem to get the CP page pop up so I can enter the credentials to log in for access
Probably something I'm missing. Any assistance will be really appreciated
Solved! Go to solution.
Got this sorted. Here is my solution:
Guest SSID
Security - Open
Splash page - None (direct access)
Necessary vlan tag ID
Wireless>Firewall & traffic shaping
On my Guest SSID, I add a rule i.e., allow ipv4 TCP to my guest gateway (guest interface on my pfSense) destination port 8002 which is the default port for pfSense CP
Are you blocking all access until sign-on is complete?
I'm not using splash page. I'm getting my CP via a firewall(pfsense) which is also the DHCP for my guest access
You must use "Click-through" option and configure a "Custom splash URL" under Wireless > CONFIGURE > Splash page
It's not the only option, but in this case he must have to configure the walled garden setting the IP of his external page.
Manually specify an IP range or domain names users can access prior to sign-on. Meraki's splash page is automatically included in your walled garden. If you host your own splash page you must enter its information here.
I've tried that option to no avail.
So It's a issue with your portal. I suggest to open a case.
It sounds like an issue on the CP side, rather than on the Meraki side.
My current setup works with Unifi AP/Controller and CP/DHCP via pfSense. Am trying to incorporate Meraki to the current setup to test and will setup another scenario later where Meraki will be the CP itself.
So, no there is no issue on the CP side AFAIK
You must have to configure the walled garden setting the IP of your external page.
Manually specify an IP range or domain names users can access prior to sign-on. Meraki's splash page is automatically included in your walled garden. If you host your own splash page you must enter its information here.
Got this sorted. Here is my solution:
Guest SSID
Security - Open
Splash page - None (direct access)
Necessary vlan tag ID
Wireless>Firewall & traffic shaping
On my Guest SSID, I add a rule i.e., allow ipv4 TCP to my guest gateway (guest interface on my pfSense) destination port 8002 which is the default port for pfSense CP