Skip to main content
Cisco Meraki Documentation

Configuring WPA2-Enterprise with Google Auth


This document outlines the steps you will need to take to configure your Meraki wireless network for WPA2-Enterprise encryption with 802.1X authentication against your Google Apps domain. With this feature, your users will be able to use their Google Apps credentials to access your secure wireless network.

Supported Operating Systems

EAP-TTLS/PAP is required on client devices. The following operating systems have native support:

  • iOS version 3.1.3 and higher.
  • Mac OS X 10.4 and higher.
  • Microsoft Windows 8 and higher.
  • Microsoft Windows Phone 8.1 and higher.
  • Google Chrome OS.
  • Android version 2.1 and higher.
  • Blackberry 6A and higher.

Other operating systems may enable support by installation of a certified third-party Encryption Control Protocol (ECP) client. OEM wireless adapter device drivers may also provide support.


The following sections walk through configuration of 802.1X authentication with Google Auth.

Enable 2-factor Authentication in your Google Apps Domain

Please refer to Google's documentation regarding how to enable 2-factor auth.

  • Users in your Google Apps domain will need to create an ‘App Specific Password.’
    Please refer to Google's documentation for details.
  • The ‘App Specific Password’ will be the password used for WPA2-Enterprise login on the client devices.

Enable Single Factor Authentication

Note: As of May 2022, Google has discontinued Access to less secure apps control, therefore Single Factor Authentication is no longer supported. 

Contact Meraki to Enable this Feature

Contact Meraki Support to request activation of the Google Apps 802.1X Authentication feature on one Meraki network or your entire Meraki organization.

Enable WPA2-Enterprise with Google from Meraki Dashboard

  1. In Dashboard, go to Wireless > Configure > Access control.
  2. Select the desired SSID for this feature.
  3. Under Network access > Association requirements, select WPA2-Enterprise with Google
  4. Enter your Google Apps domains into Allowed domains. To configure multiple domains, simply separate them by a space (e.g.


Configure your Client Devices to use EAP-TTLS+PAP

Please refer to our documentation on configuring EAP-TTLS + PAP on Mac OS X/iOS or Microsoft Windows.

  • Was this article helpful?