Meraki

Community

Using a Sign-on Splash Page to Restrict Wireless Access by MAC address

Ben0391
Here to help
‎May 5 2022 1:48 AM
‎May 5 2022 1:48 AM

Using a Sign-on Splash Page to Restrict Wireless Access by MAC address

Hello all,

I have tried to configure MAC-based authentication to a SSID without logging in to a splash page.

I have used this manual:

https://documentation.meraki.com/MR/MR_Splash_Page/Using_a_Sign-on_Splash_Page_to_Restrict_Wireless_...

 

Basically, I see the SSID and when I connect to a device, I see the splash page. For all unathorized users everything is fine.

Ben0391_2-1651740170628.png

 

For authorized users, who should be able to use the SSID I have created a group policy with "Bypass Splash-Page"-setting and bandwith limits:

Ben0391_3-1651740275558.png

 

This group policy is configured for the SSID on the clients settings:

Ben0391_4-1651740502068.png

 

 

In my opinion, with this setting the client should connect automatically, i.e. without logging into the splash page with the SSID? Or have I misunderstood something here?

 

 

 

Labels:
0 Kudos
4 Replies 4
MarcP
Kind of a big deal
‎May 5 2022 2:58 AM
‎May 5 2022 2:58 AM

On your last screenshot, the device is not whitelisted for any of the SSID´s...

0 Kudos
Ben0391
Here to help
‎May 5 2022 3:01 AM
‎May 5 2022 3:01 AM

Hi Marc,

thanks for the quick reply. 
On the last Screenshot you can see, that for the last SSID a group policy is applied. 

The screenshot earlier shows the settings in the group policy? Does this work?

0 Kudos
In response to Ben0391
MarcP
Kind of a big deal
‎May 5 2022 3:29 AM
‎May 5 2022 3:29 AM

Ah, I see, yes...

Well should work, afaik.

Or you could whitelist the client for this SSID completely? YOu did not write something about bandwidth limit or something like that.

whitelist bypasses the splash page as well.

 

Other option my be iPSK without Radius?

https://documentation.meraki.com/MR/Encryption_and_Authentication/IPSK_Authentication_without_RADIUS

 

0 Kudos
Ben0391
Here to help
‎May 5 2022 4:38 AM
‎May 5 2022 4:38 AM

I have tried it with "whitelisted", but I get still the Splash Page

Ben0391_1-1651750533849.png

 

Ben0391_0-1651750470685.png

 

Any other suggestions? For me this would be the easiest way to handle this....

 

iPSK without Radius is unfortunately not an option for us. But thanks for the link.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.