Skip to main content

 

Cisco Meraki Documentation

Using Google OAuth Splash with a Walled Garden

Overview

The Meraki sign-on Splash Page can be integrated with Google OAuth, requiring users to log in with credentials from a custom Google domain for network access. This Splash Page can be configured to block Internet access until sign-on is complete, but certain domains need to be added to the Walled garden ranges in order for OAuth to complete.

This article explains how to configure the Meraki sign-on Splash Page with Google OAuth while restricting pre-authentication Internet access. 

Prerequisites

  • Firmware: MR28+ 
  • Licensing: MR-ADV

Google OAuth Walled Garden with the WAN Appliance

  1. On the Dashboard, navigate to Security Appliance > Configure > Access Control.
  2. Select the appropriate VLAN from the drop-down menu.
  3. Set the Splash page method as Sign-on with 3rd Party Credentials and select Google as the Accepted Credentials as well as your domain.
    The alternative text for the image could be: "This image illustrates the steps to configure Access Control in the Meraki Dashboard, including selecting a VLAN, setting the Splash page method to 'Sign-on with 3rd Party Credentials,' and choosing Google as the accepted credentials.
     
  4. Set Captive portal strength to "Block all access until sign-on is complete." and Walled Garden to enabled.
  5. Add the domains provided in Google's Gmail Firewall Settings documentation to the Walled garden ranges.

    This image demonstrates how to configure Captive Portal Strength to block all access until sign-on is complete and enable the Walled Garden with Google's Gmail Firewall Settings domains.
  6. Save Changes at the bottom of the dashboard.

Google OAuth Walled Garden with Meraki Access Points

  1. In Dashboard, navigate to Wireless > Configure > Access Control.
  2. Select your Desired SSID in the top Left Corner
    Navigate to 'Wireless,' then 'Configure,' and select 'Access Control' in the Dashboard. Choose your desired SSID from the dropdown menu in the top left corner.
  3. Under Splash Page, Select Sign on With Google OAuth and add your Allowed Domains.
    Under the Splash Page settings, select 'Sign on with Google OAuth.' Then, add your allowed domains to the configuration.
  4. Navigate to Advanced Splash Settings below and then set the Captive Portal Strength to "Block all access until sign-on is complete".
  5. Set Walled Garden to Enabled, and then add the domains from Google's Gmail Firewall Settings documentation to the Walled Garden Ranges.
    Navigate to Advanced Splash Settings, set 'Captive Portal Strength' to 'Block all access until sign-on is complete,' enable 'Walled Garden,' and add the domains from Google's Gmail Firewall Settings documentation to the Walled Garden ranges.
  6. Save Changes at the bottom of the dashboard.

Refer to Google OAuth in Google Sign-In for more information.

  • Was this article helpful?