Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2332
Views
1
Helpful
5
Replies

VPN Authentication

MeauxDawg
Community Member

‎10-17-2024 06:38 AM

Is there a way to authenticate VPN users again Entra with out using third party or additional apps or servers.

From what I understand I would have to set up a radius server or third party to use radius. I would have to use something like anyconnect or a third party to us SAML.

I have seen sort of hints or people saying you can set up SAML without any additional cost or software. I am not finding a definitive answer on this. Can an MX series with VPN server that is connected to by the windows native VPN client be authenticated to Entra. If so can someone point me to the documentation.

Labels:
0 Helpful
5 Replies 5

mloraditch
Meraki Community All-Star
Meraki Community All-Star

‎10-17-2024 11:10 AM

You can not currently use Entra with the native VPN Client as an authentication source directly. The options are Radius or On-Prem AD.

You can do it with AnyConnect as here: https://documentation.meraki.com/MX/Client_VPN/AnyConnect_on_the_MX_Appliance/AnyConnect_Azure_AD_SAML_Configuration

I would not anticipate any development to let you use the older VPN with Entra directly. Between RADIUS and AnyConnect there are plenty of solutions that will work already.

If you found this post helpful, please give it a thumbs up. If my answer solves your problem please click Accept as Solution so others can benefit from it.

MeauxDawg
Community Member
In response to mloraditch

‎10-17-2024 11:15 AM

Any of those solutions available without extra subscriptions? We got bought, moved from on prem AD to Entra and from cisco to meraki. I am just trying to figure out how to make this stuff work. I have already read the anyconnect documentation. Thanks.

0 Helpful

Philip D'Ath
Meraki Community All-Star
Meraki Community All-Star
In response to MeauxDawg

‎10-17-2024 01:35 PM

It requires you to buy Cisco AnyConnect licences. I think they are well priced for what you get ...

0 Helpful

GreenMan
Cisco Employee
Cisco Employee

‎10-17-2024 11:13 AM

As Mloraditch has suggested; you'll have a much better experience via AnyConnect (or Cisco Secure Client as it's now known). SAML auth being just one of the advantages.

0 Helpful

MeauxDawg
Community Member
In response to GreenMan

‎10-17-2024 11:19 AM

There are no solutions that doesn't require extra subscriptions? Does something like the meraki dashboard application in Entra but for VPNs not exist? I'm guessing not, but was hopeful. Thanks.

0 Helpful
Customers Also Viewed These Support Documents