We're just beginning to roll applications onto our SAML identity provider. I've tested our internal Meraki organization with SAML authentication and it's working. But, what are the best practices for configuring admin access to our dozens of client organizations under our partner account? Do we need to individually configure SSO on each client's organization? How are other partners achieving the convenience of SSO and the need to access any and every client org at any time?
One thing that helps is creating new Orgs by copying an existing Org. The SAML config will copy over. We keep a "template" Org that's just an empty Org with the setting we want on it around for the sole purpose of cloning for new Orgs.
"When this occurs, the user will be directed to the MSP portal and receive the desired permissions in each organization. The Consumer URL for any of the MSP organizations can be used, as they will all direct the user to the MSP portal."