cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

New Org appeared overnight in our MSP Portal

SOLVED
Go to solution
RJones
Here to help
‎09-26-2022 12:37 PM
‎09-26-2022 12:37 PM

New Org appeared overnight in our MSP Portal

I noticed this morning when looking at one of the networks in our Organization that 2 more Orgs had appeared in our MSP Portal. I have a case open for this, but this is the 3rd time we've had this happen. Anyone else have this happen?

0 Kudos
Subscribe
1 ACCEPTED SOLUTION
RJones
Here to help
‎09-28-2022 11:51 AM
‎09-28-2022 11:51 AM

It looks like someone (possibly a former employee) of one of our vendors was accessing Meraki via SAML SSO for the vendor and used the link for that in order to clone our Org. I disabled the SAML access until they can get new keys generated so this doesn't happen again. Thanks everyone!

View solution in original post

0 Kudos
Subscribe
9 REPLIES 9
alemabrahao
Kind of a big deal
Kind of a big deal
‎09-26-2022 12:48 PM
‎09-26-2022 12:48 PM

Are you sure you don't have admin access on organizations?

0 Kudos
Subscribe
In response to alemabrahao
RJones
Here to help
‎09-27-2022 08:46 AM
‎09-27-2022 08:46 AM

The Administrators list shows the same for my original Org, but when I try to delete any one of the accounts under the other org, I get an error that I do not have permissions.

0 Kudos
Subscribe
BrandonS
Kind of a big deal
‎09-26-2022 02:56 PM
‎09-26-2022 02:56 PM

Strange. Maybe your email is easily mistaken for another and someone is adding you in error?

It’s not happened to me. 

Subscribe
In response to BrandonS
RJones
Here to help
‎09-27-2022 08:47 AM
‎09-27-2022 08:47 AM

Nope, it looks like a completely separate company.

0 Kudos
Subscribe
In response to RJones
alemabrahao
Kind of a big deal
Kind of a big deal
‎09-27-2022 08:53 AM
‎09-27-2022 08:53 AM

Yeah, but when you have permission on another organization (even read-only) it will show on MSP portal, maybe someone added your email by mistake.

0 Kudos
Subscribe
In response to alemabrahao
RJones
Here to help
‎09-27-2022 09:35 AM
‎09-27-2022 09:35 AM

That's what Support said, however, all Admins in our Org were in the new Org with the same permissions and API keys. No one received an email for account creation.

0 Kudos
Subscribe
alemabrahao
Kind of a big deal
Kind of a big deal
‎09-27-2022 09:45 AM
‎09-27-2022 09:45 AM

@RJones,

 

It's not a new account creation, look, for example If you add my e-mail as an administrator in your organization It will be showed on my MSP portal, but my e-mail is an existent account on Meraki dashboard, so maybe someone did It using your e-mail, but maybe It was a mistake.

 

You got It?

0 Kudos
Subscribe
In response to alemabrahao
RJones
Here to help
‎09-27-2022 10:55 AM
‎09-27-2022 10:55 AM

Yes, I understand that, but it wasn't just me, it was others as well. It appears like the Administrator page was cloned for a new org, but someone not in the administrator list was making changes in the new Org.

0 Kudos
Subscribe
RJones
Here to help
‎09-28-2022 11:51 AM
‎09-28-2022 11:51 AM

It looks like someone (possibly a former employee) of one of our vendors was accessing Meraki via SAML SSO for the vendor and used the link for that in order to clone our Org. I disabled the SAML access until they can get new keys generated so this doesn't happen again. Thanks everyone!

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2023 Meraki