Skip to main content
Cisco Meraki

Using Google OAuth Splash with a Walled Garden

The Meraki sign-on Splash Page can be integrated with Google OAuth, requiring users to log in with credentials from a custom Google domain for network access. This Splash Page can be configured to block Internet access until sign-on is complete, but certain domains need to be added to the "walled garden" of allowed websites in order for OAuth to complete.

This article outlines how to allow Google OAuth to operate while still limiting pre-authentication Internet access. 

 

Assuming a Splash Page has already been configured with Google OAuth, the following configuration steps outline how to add Google's OAuth domains to the walled garden:

  1. In Dashboard, navigate to Security Appliance/Wireless > Configure > Access Control.
  2. Select the appropriate SSID or VLAN from the drop-down menu on top.
  3. Set Captive portal strength to "Block all access until sign-on is complete."
  4. Set Walled garden to "Walled garden is enabled."
  5. Add the following domains to the Walled garden ranges:
    Note: The following list of domains is subject to changes by Google, and may not be up-to-date. Please refer to Google's documentation and support if OAuth is still blocked.
    • www.google.com
    • *.google.(country code, e.g. .ca)
    • accounts.google.com
    • *.googleapis.com
    • *.gstatic.com
    • *.googleusercontent.com
    • apis.google.com
  6. (optional) To allow access to additional domains before sign-on is complete, append them to the Walled garden ranges.

     
  7. Click Save changes.
  • Was this article helpful?