BYOD Password less solution flow challenges

kshah2589 · ‎11-27-2023

Hello,

We have already configured the SSID in Meraki dashboard for our BYOD network to use an ISE captive portal redirected to Microsoft login page configured with SAML SSO authentication. the flow is Meraki > to ISE > to Azure IDP.

While testing the BYOD flow, time to time we are facing the following error in screen shot. we are not sure what could be the reason. Is there any way we can remediate the issue?

we already have following websites in Meraki walled garden as per the documents, are we missing anything else?

login.microsoftonline.com
aadcdn.microsoftonline-p.com
aadcdn.msauth.net

Let me know if any suggestions.

Regards,

Kunal

balaji.bandi · ‎11-27-2023

is the DNS works as expected ?

at the same time have you checked the URL on other browser (not safari ?)

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

kshah2589 · ‎11-27-2023

Thanks balaji for the prompt reply.

I am not sure what you mean exactly by DNS work as expected but the flows are as follows.

1). user connects to SSID, the user receives internal IP and external DNS server info >>>>>> then browser receives portal redirect URL resolves to internal ISE IP by the external DNS server [which is happening perfectly ok] >>>> then ISE internally redirect browsers to Microsoft login page for authentication. that's where we notice the error.

2). we also notice the same error with android phones in other browser.

Regards,

Kunal