https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467573#M291506 <P><STRONG>Be very careful when doing this</STRONG> as this allows not only bypass of the splash page ,it will also bypass any and all security you may have applied to the Meraki MR and MX. Its better to have custom</P><P>group policy that adheres to the network rules but bypasses the splash page... or better yet a dedicated policy that allows only the access you need to allow for these macs.</P><P>Allow List<BR />Applies the following settings to a client:</P><P>Is exempt from all firewall rules, both Layer 3 and Layer 7 (Applies to both the MX Security Appliance and the MR Access Points)<BR />Bypasses AMP<BR />Bypasses a Click-through Splash page <BR />Bypasses a Billing (paid access) Splash page and access the network on an SSID without paying or authenticating<BR />Bypasses a Sign-on Splash page without authenticating (Applies to both the MX Security Appliance and the MR Access Points)<BR />Is exempt from Per-client bandwidth limit (Applies to both the MX Security Appliance and the MR Access Points)<BR />Is exempt from Traffic shaping rules (Applies to both the MX Security Appliance and the MR Access Points)<BR />Bypasses Content filtering on MX Security Appliance </P> Wed, 14 Jun 2023 02:06:39 GMT DainBrammage 2023-06-14T02:06:39Z https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467570#M291503 <P>We have a new challenge where we want to whitelist a set of devices so that they avoid the splash page on SSIDs. It is easy within a network/site, but is there a way to whitelist a selection of MAC addresses for multiple or all networks? </P> Thu, 08 Jun 2023 09:49:20 GMT https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467570#M291503 CMR 2023-06-08T09:49:20Z https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467571#M291504 <P>Assuming the best way to do this would be to cycle through the networks with the API.</P><P>Looks like this endpoint would do it:</P><P><A href="https://developer.cisco.com/meraki/api-v1/#!provision-network-clients" target="_blank" rel="nofollow noopener noreferrer">https://developer.cisco.com/meraki/api-v1/#!provision-network-clients</A></P> Thu, 08 Jun 2023 10:06:01 GMT https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467571#M291504 Brash 2023-06-08T10:06:01Z https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467572#M291505 <P>Otherwise you'll have to manually add the client to every network in the dashboard in advance.</P><P><SPAN class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="PhilipDAth_0-1686257660847.png" style="width: 400px;"><span class="lia-inline-image-display-wrapper" image-alt="image.png"><img src="https://community.cisco.com/t5/image/serverpage/image-id/271510i32BA5EB64527E608/image-size/large?v=v2&amp;px=999" role="button" title="image.png" alt="image.png" /></span></SPAN></P> Thu, 08 Jun 2023 20:54:29 GMT https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467572#M291505 Philip D'Ath 2023-06-08T20:54:29Z https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467573#M291506 <P><STRONG>Be very careful when doing this</STRONG> as this allows not only bypass of the splash page ,it will also bypass any and all security you may have applied to the Meraki MR and MX. Its better to have custom</P><P>group policy that adheres to the network rules but bypasses the splash page... or better yet a dedicated policy that allows only the access you need to allow for these macs.</P><P>Allow List<BR />Applies the following settings to a client:</P><P>Is exempt from all firewall rules, both Layer 3 and Layer 7 (Applies to both the MX Security Appliance and the MR Access Points)<BR />Bypasses AMP<BR />Bypasses a Click-through Splash page <BR />Bypasses a Billing (paid access) Splash page and access the network on an SSID without paying or authenticating<BR />Bypasses a Sign-on Splash page without authenticating (Applies to both the MX Security Appliance and the MR Access Points)<BR />Is exempt from Per-client bandwidth limit (Applies to both the MX Security Appliance and the MR Access Points)<BR />Is exempt from Traffic shaping rules (Applies to both the MX Security Appliance and the MR Access Points)<BR />Bypasses Content filtering on MX Security Appliance </P> Wed, 14 Jun 2023 02:06:39 GMT https://community.cisco.com/t5/wireless/whitelist-a-client-across-multiple-networks/m-p/5467573#M291506 DainBrammage 2023-06-14T02:06:39Z