Meraki

FlyingFrames

Hi Meraki Community,

We have Meraki Dashboard configured for SSO via our IdP (e.g., Okta/Entra). We also have ThousandEyes configured to use the same IdP/SSO.

If I’m already logged into Meraki Dashboard via SSO, and then open ThousandEyes in another tab/browser window for the first time after rebooting laptop, then should ThousandEyes authenticate me automatically using the existing IdP session (i.e., “silent SSO”), or should I expect to be prompted to log in again?

Additionally, are there known conditions where the “silent” experience won’t work (session timeout, MFA/conditional access, cookie settings, etc.)?

Thanks in advance!

Mloraditch

This should be dependent on the IdP. For example we use Entra and because of our conditional access policies basic applications tend to all work once I sign in once until the timeout, but things where stricter CA policies apply will require re-authentication.

There are lot of variables here. For example I know DUO supports SSO where once you sign-in to the machine it should work on every app in the session. I would guess there are some caveats with that as well.

This is really more a question for your IDP vendor than Meraki or TE.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

PhilipDAth

I agree with @Mloraditch - it is up to the SAML provider if you are required to log in again or not.

Meraki

Community

Meraki SSO (IdP) to ThousandEyes SSO: will I be prompted to log in again?

Meraki SSO (IdP) to ThousandEyes SSO: will I be prompted to log in again?