Transport Layer Security (TLS) is used to encrypt communication between Cisco Meraki devices and a Domain Controller or identity server (running Active Directory or LDAP services). To use TLS, a certificate with the appropriate parameters must be installed on the Domain Controller. This article outlines the necessary certificate parameters for TLS.
Having the correct time zone on your Dashboard network is helpful when reviewing Client usage and history on Dashboard and when configuring time-sensitive features such as SSID Availability or Port Scheduling.
EAP-TLS, PEAP-MSCHAPv2, LDAP/TLS require a digital certificate be installed on your RADIUS server. The certificate provides authentication, encryption, and validation. Follow the steps below to create an offline certificate request on your Windows server when obtaining a certificate from a commercial or standalone Certificate Authority.
Certificate services is a component on Microsoft Windows Server that is necessary for integrating when using a customer hosted Active Directory or RADIUS/802.1x server. Installing certificate services enables you to deploy a root certificate authority which can then be used to issue certificates that encrypt data such as authentication credentials.
The Cisco Meraki Dashboard provides centralized management, optimization, and monitoring of Cisco Meraki devices. In order to manage a Cisco Meraki device through Dashboard, it must be able to communicate with the Cisco Meraki Cloud (Dashboard) over a secure tunnel. This tunnel is created between Cisco Meraki devices and Dashboard to pass management and reporting traffic.
Self-signed certificates can be generated in Windows Server 2008 and 2012 using Internet Information Services (IIS). This is useful in testing environments to quickly generate a certificate that can be used for encrypting communication with external sources, such as Cisco Meraki devices when performing authentication. This guide will walk through how to generate a self-signed certificate using IIS on both platforms.
IP multicast is a method of sending Internet Protocol (IP) datagrams to a group of interested receivers in a single transmission. It is often employed for streaming media applications on the Internet and private networks. Since traffic is sent from the source once in total, instead of once per recipient, throughput can be saved.
Cisco Meraki MX Security Appliances support Point to Point Protocol over Ethernet (PPPoE). PPPoE is not supported by Cisco Meraki MR Series Access Points. You may need PPPoE if your ISP requires a username and password to access your DSL connection.