Meraki

JKalmari · ‎Nov 25 2024

We have a working Azure SSO login to Meraki dashboard (made following the Meraki documentation) but for some reason SSO doesn't work on Vision Portal.

After giving credentials and passing MFA I get this error:

"The server encountered an SSO error. Please contact your network administrator for assistance. For reference, your login was at Nov 25 09:54:34 UTC from xx.xxx.xxx.xxx."

I tried making another app to the Azure just for Vision SSO login, but it didn't work either.

Any ideas welcome.

Ryan_Miles · ‎Nov 25 2024

Does dashboard show anything in the SAML history log for these failed login events? And if yes, what is the error?

https://documentation.meraki.com/General_Administration/Managing_Dashboard_Access/SAML_Login_History...

View solution in original post

Ryan_Miles · ‎Nov 25 2024

Does dashboard show anything in the SAML history log for these failed login events? And if yes, what is the error?

https://documentation.meraki.com/General_Administration/Managing_Dashboard_Access/SAML_Login_History...

JKalmari · ‎Nov 25 2024

One learns something every day, like there is a SAML Login History. Can't understand how I haven't noticed that before. Thanks!

And yes, there's error: "Assertion validation error: Fingerprint mismatch"

So it is something with SHA1 fingerprint values.

EDIT:

I added SAML IdP thumbprint for Vision application and it works now. So simple and dumb that it almost hurts.

Thanks!

Ryan_Miles · ‎Nov 26 2024

Glad you got it resolved. That's exactly why I mentioned the log as it often gives a decently clear indication of what the mismatch is 👍

Meraki

Community

Vision portal SSO login

Vision portal SSO login