View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

SEC0214 - ISE 2.0 Meraki MDM with Wireless (Part 1)

Rating: 
5
Average: 5 (2 votes)
Difficulty Level: 
0
Lab Document: 
<Please login to see the content>
The video shows you how to leverage Meraki MDM to assist mobile user with device onboarding, generate device certificate, and manages wireless profile. Cisco ISE 2.0 will be used to perform wireless 802.1X authentication and posture assessment with Meraki System Manager integration. The goal is to demonstrate a simpler BYOD onboarding process.
 
Part 1 of this video covers device enrolment, and basic WLAN 802.1X authentication
 
Topic:
  • Meraki System Manager 
  • ISE MDM Integration
  • Authorization Policies
  • Mobile Device Posture Assessment

About Author

Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.

2 comments

Hi Metha,

Just a quick one. What does one have to do in order to get the Meraki SCEP server to be signed by the Microsoft CA so I don't have to enroll with the native BYOD portal on ISE. Obviously I would need to sign it via the web enrolment platform, but I also assume we would need to create a new template and have that published with a %username% for the CN. If I import using a standard template its only good for the user I used to log into the web enrollment platform (i.e. administrator). Is this correct or would I need to do something else?

The CSR is created on Meraki so the CN should be whatever specified in there already. You just need to make sure it is signed by MS CA template that allows cert signing. One of the default templates should be called subordinate CA or something along that line.