Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Setting up Meraki dashboard with SSO/Okta with already existing accounts

axemte
Just browsing
‎May 18 2018 11:54 AM
‎May 18 2018 11:54 AM

Setting up Meraki dashboard with SSO/Okta with already existing accounts

I understand there is an issue where if the user account already exist you would get an error that "The SSO username xxx already exists as a Dashboard user account"

 

Has this been resolved?

 

I would hate to have to delete all users already created just so they can use SSO.

 

Thanks

0 Kudos
Subscribe
9 Replies 9
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 18 2018 12:53 PM
‎May 18 2018 12:53 PM

By having the same users in two places you create an issue - which is the authoritative user?

0 Kudos
Subscribe
In response to PhilipDAth
axemte
Just browsing
‎May 18 2018 12:59 PM
‎May 18 2018 12:59 PM

Thanks for the reply. These users are all in the Meraki Administrator section with Organization privilege.

 

If I delete the user and then let them SSO, I do not see them on the Administrator section though.

0 Kudos
Subscribe
In response to axemte
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 18 2018 1:06 PM
‎May 18 2018 1:06 PM

Did you create then SAML roles in the dashboard?

https://documentation.meraki.com/zGeneral_Administration/Managing_Dashboard_Access/Configuring_SAML_...

0 Kudos
Subscribe
In response to PhilipDAth
axemte
Just browsing
‎May 18 2018 1:12 PM
‎May 18 2018 1:12 PM

Yes. I can see in that link that the username attribute cannot match an existing Dashboard administrator's email address. 😞

0 Kudos
Subscribe
MRCUR
Kind of a big deal
‎May 18 2018 1:13 PM
‎May 18 2018 1:13 PM

The issue I had with this previously is that even if you delete the existing user, and then have them use SSO login, it will not work. Perhaps this has been fixed, but previously it was "expected behavior". 

MRCUR | CMNO #12
0 Kudos
Subscribe
In response to MRCUR
axemte
Just browsing
‎May 18 2018 1:16 PM
‎May 18 2018 1:16 PM

It does work if you delete the user.

 

The one thing is that I do not see the user(s) "created" once using SSO to login in the Administrators section. I'm wondering where they are listed now at all.

0 Kudos
Subscribe
In response to axemte
MRCUR
Kind of a big deal
‎May 18 2018 1:18 PM
‎May 18 2018 1:18 PM

Good to know that's fixed!

 

The SSO users are not listed anywhere in Dashboard. You need to create a SAML role which is tied to an attribute you're passing with the users. I'm not sure you can actually configure an org admin access level with this setup. 

MRCUR | CMNO #12
0 Kudos
Subscribe
In response to MRCUR
axemte
Just browsing
‎May 18 2018 1:21 PM
‎May 18 2018 1:21 PM

I guess I have no other option but to delete/recreate accounts. 🙂

Thanks for the information and help. Much appreciated.

0 Kudos
Subscribe
In response to axemte
Welles
Building a reputation
‎May 18 2018 6:13 PM
‎May 18 2018 6:13 PM

It would be nice if Meraki would take a page from how Dropbox does SSO. Pretty smooth process, even for existing users accounts. 

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.