Trying to authenticate a user with their AD credentials and the error displayed
The remote connection was denied because of the username and password combination
In the Event Log on the Meraki
Also saw these errors
msg: invalid DH group 19.
msg: invalid DH group 20.
msg: failed to begin ipsec sa negotiation.
You need a TLS Certificate on the Domain Controller and Radius server for Communication , run the below powershell
New-SelfSignedCertificate -DnsName domaincontroller.domain.local -CertStoreLocation cert:\LocalMachine\My
This will create a cert for you in Personal / Certificates for the Local Computer
You will need to use the MMC to copy this to the Trusted Root Certification Authorities
I also has issues with Radius with the error : msg: failed to begin ipsec sa negotiation.
After following these settings : https://documentation.meraki.com/MX/Client_VPN/Configuring_RADIUS_Authentication_with_Client_VPN
In the end I had to Clear out the Conditions in the network polices ( Specifically the Calling Station ID ) and re-add
Trackback from your site.