This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

RSA SecurID® Access Discussions

Browse the SecurID Access discussion board to get product help and collaborate with other users of SecurID Access.
AngeOlivierAmbe
Beginner
Beginner
‎2017-03-27 09:46 AM

Access Point Meraki and SBR radius

Jump to solution

Hello All,

 

Anyone have made a authentication btw AP Meraki and AM 8.2 in radius mode ? i make the test but authentication not works because AM not supporte CHAP.

 

any workaround ?

 

Thanks for your help

Labels (1)
0 Likes
Reply
1 Solution

Accepted Solutions
JayGuillette
Valued Contributor Valued Contributor
Valued Contributor
‎2017-03-27 10:33 AM

Jump to solution

According to Frank "the RADIUS guy" Miller here in Support:

 

The Meraki is using 802.1X (EAP) to authenticate users. The method requested is PEAP and MS-CHAPv2. MS-CHAPv2 is not supported by the AM 8.1 Radius server. The only inner EAP protocols supported by the AM 8.1 Radius server are RSA-EAP, RSA-OTP and EAP-GTC.  The 2 RSA protocols were discontinued after windows 7. To use EAP-GTC you would have to find a supplicant that supports it.

A possible fix for this would be to use a Cisco ACS server as the radius server, with the AM 8.1 server configured as an external authentication server on the ACS. The ACS authenticating to the AM 8.1 server is a common configuration. You will need to contact Cisco for further information on integrating the Meraki gateway with the Cisco ACS.

View solution in original post

Reply
2 Replies
JayGuillette
Valued Contributor Valued Contributor
Valued Contributor
‎2017-03-27 10:33 AM

Jump to solution

According to Frank "the RADIUS guy" Miller here in Support:

 

The Meraki is using 802.1X (EAP) to authenticate users. The method requested is PEAP and MS-CHAPv2. MS-CHAPv2 is not supported by the AM 8.1 Radius server. The only inner EAP protocols supported by the AM 8.1 Radius server are RSA-EAP, RSA-OTP and EAP-GTC.  The 2 RSA protocols were discontinued after windows 7. To use EAP-GTC you would have to find a supplicant that supports it.

A possible fix for this would be to use a Cisco ACS server as the radius server, with the AM 8.1 server configured as an external authentication server on the ACS. The ACS authenticating to the AM 8.1 server is a common configuration. You will need to contact Cisco for further information on integrating the Meraki gateway with the Cisco ACS.

View solution in original post

Reply
AngeOlivierAmbe
Beginner
Beginner
In response to JayGuillette
‎2017-03-27 10:50 AM

Jump to solution

Thanks Jay.

 

Ange.

0 Likes
Reply
© 2021 RSA Security LLC or its affiliates.
All rights reserved.