We did this using SAML… You have to put in a ticket or call in to Cisco support and get them to enable SAML on your appliance
Sure thing. Here’s a quick and easy article on how to set it up via SAML. You’ll also need to configure the AnyConnect side in the client VPN page within the Meraki portal.
You shouldn’t be using 192.168.0.0/24 or 192.168.1.0/24 for your office subnets. You’re bound to have silly VPN issues.
It is a plugin for your NPS/Radius box.
Oh, we realized, but I’m not taking the chance of Cisco changing their minds one day and then needing to either license or move everything back. Our current system worked except for 0.5% of users whose ISP decided to implement “security” policies. If we had a use case for it, I did like the product and its ease of use and configuration.
We did look at just the vpn bits but when compared to nothing it wasn’t worth it for less than 0.5% of users having the ISP issue.
Thank you, JBD_IT, for voting on a5it_com.
This bot wants to find the best and worst bots on Reddit. You can view results here.
^(Even if I don’t reply to your comment, I’m still listening for votes. Check the webpage to see if your vote registered!)
Appreciate the info.
Thank you whoever gave me the Reddit gold! That was a really sweet surprise!
Rogers, one of the ISPs in Canada uses the 10.0.0.0/24 subnet and it really messes things up. When a coworker can’t access anything over the VPN this is usually the problem.
What ISP issue are you referring to?
For us it was Comcast and their “Advanced Security”