Skip to main content
Cisco Meraki Documentation

Configuring Clients for 802.1X and Meraki Authentication

Connecting to an SSID using Meraki Authentication

The following steps provide instructions on how to configure a specific OS to use 802.1X with Meraki Authentication. These steps may not be the same when configuring 802.1X authentication for every RADIUS server configuration as these can vary widely.

Windows 10

  1. Click the Start menu
  2. Search for Control Panel 
  3. Select the view by drop down in the top right hand corner and click large or small icons
  4. Click Network and Sharing Center
  5. Select Set up a new connection or network
  6. Select Manually connect to a wireless network
  7. Type the SSID name in the Network name field
  8. Under Security type, select WPA2-Enterprise
  9. Under Encryption type, select your encryption type from the  drop down
  10. Click Next
  11. When Successfully added appears click Change connection settings
  12. Select the Security tab
  13. Click Advanced setting button
  14. Under the 802.1X settings tab, check the box Specify authentication mode and select User Authentication from the drop down
  15. Click OK
  16. Go back to the Security tab, confirm Choose a network authentication method is set to EAP (PEAP)
  17. Click Settings button
  18. Click OK
  19. Under Protected EAP Properties, uncheck Validate server certificate 
    1. if you do want to validate server certificate, please make sure 'Go Daddy Class 2 Certification Authority' and http://valicert.com is checked in the Trusted Root Certification Authorities list
  20. Click the Configure button
  21. Uncheck Automatically use my Windows logon name
  22. Click OK

Apple macOS

  1. Go to System Preferences > Network > Wi-Fi
  2. Select the SSID from the network drop down
  3. Type in your username and password
    1. The username is the email address added under Network-wide > Users for the specific SSID
  4. Click Join
    1. Click Connect to trust the certificate and join the SSID If there is a certificate warning
    2. macOS may prompt for an administrator password to add an exception for the certificate

Android

  1. Go to Settings > Wi-Fi
  2. Open the options menu by clicking the context menu button: context_menu_android.png 

The exact location of where to add a new SSID may vary by device and firmware version

  1. Select Add Wi-Fi
  2. Enter the Network SSID name and choose 802.1X EAP from the Security drop-down menu
  3. Choose PEAP from the EAP method drop-down menu
  4. Choose MSCHAPV2 from the Phase 2 authentication drop-down menu
  5. Type meraki.com for the domain
  6. Type your username in the Identity field
    1. The username is the email address added under Network-wide > Users for the specific SSID
  7. Enter the password
  8. Click Save

Windows 8

Windows 8 will not attempt to automatically use local credentials for wireless connections unlike previous versions of Windows

  1. Navigate to the Desktop
  2. Click on the wireless network icon
  3. Select the SSID from the list
  4. Click Connect
  5. Enter the Username and Password using the email address added under Network-wide > Users for the specific SSID
  6. Click Connect
    1. If you see a certificate warning click Connect to trust the certificate and join the SSID

Chrome OS

  1. Click the Search button and type Network
  2. Under the Network section, click Wi-Fi
  3. Search and click the appropriate SSID
  4. Select PEAP as the EAP method
  5. Choose MSCHAPV2 from EAP Phase 2 authentication drop-down menu
  6. Type your username in the Identity field
    1. The username is the email address added under Network-wide > Users for the specific SSID
  7. Enter the Password
  8. Click Connect