Meraki

Community

Enable API access endpoint

Solved
Abn
Conversationalist
‎Apr 7 2021 1:11 PM
‎Apr 7 2021 1:11 PM

Enable API access endpoint

Hi,

 

I worked with an MSP and my goal is to loop through the organizations we manage and standardize some alert settings and stuff. The logic is built but I realized that most of the organizations do not have API access enabled hence it throws back the response " {'errors': ['To make requests you must first enable API access via https://n345.meraki.com/o/jKy789/manage/organization/edit']}'

 

is there an endpoint to help me enable API access for an organization?

 

 

Labels:
0 Kudos
1 Accepted Solution
AutomationDude
Building a reputation
‎Apr 8 2021 2:44 AM
‎Apr 8 2021 2:44 AM

I understand your problem, but you are unfortunately in a paradox 😔

 

You're trying to tell your orgs to do something with the APIs, but how could this ever be possible when the APIs aren't enabled? 

 

Now it would be theoretically awesome if there was one such API touchpoint that acted as kind of gate for the other touchpoints, but the security risk would be too immense for this to ever happen and it also probably wouldn't make sense 😄

 

I'm afraid you'll have to do this one thing the old school way!

View solution in original post

9 Replies 9
Inderdeep
Kind of a big deal
Kind of a big deal
‎Apr 7 2021 1:22 PM
‎Apr 7 2021 1:22 PM

Check this link below if it helps 

https://documentation.meraki.com/General_Administration/Other_Topics/Cisco_Meraki_Dashboard_API#:~:t....

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
In response to Inderdeep
Abn
Conversationalist
‎Apr 7 2021 1:26 PM
‎Apr 7 2021 1:26 PM

That doesn't help but I appreciate. I want the endpoint that can allow me to enable the dashboard API.

0 Kudos
In response to Abn
Inderdeep
Kind of a big deal
Kind of a big deal
‎Apr 7 2021 1:28 PM
‎Apr 7 2021 1:28 PM

Check this one 

https://developer.cisco.com/meraki/api/#!get-organization-api-requests

 

Inderdeep_0-1617827302802.png

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
In response to Inderdeep
Abn
Conversationalist
‎Apr 7 2021 1:32 PM
‎Apr 7 2021 1:32 PM

Per my problem, I am expecting a PUT/POST method. 

0 Kudos
In response to Abn
Inderdeep
Kind of a big deal
Kind of a big deal
‎Apr 7 2021 1:42 PM
‎Apr 7 2021 1:42 PM

May be first you need to create the Org Access as full and then you can do that changes on the dashboard. Never tried 

https://developer.cisco.com/meraki/api/#!create-organization-admin

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
In response to Inderdeep
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Apr 7 2021 4:10 PM
‎Apr 7 2021 4:10 PM

There is no way an API can exist to enable API access.

 

No such endpoint exists, or will ever exist.

AutomationDude
Building a reputation
‎Apr 8 2021 2:44 AM
‎Apr 8 2021 2:44 AM

I understand your problem, but you are unfortunately in a paradox 😔

 

You're trying to tell your orgs to do something with the APIs, but how could this ever be possible when the APIs aren't enabled? 

 

Now it would be theoretically awesome if there was one such API touchpoint that acted as kind of gate for the other touchpoints, but the security risk would be too immense for this to ever happen and it also probably wouldn't make sense 😄

 

I'm afraid you'll have to do this one thing the old school way!

In response to AutomationDude
Abn
Conversationalist
‎Apr 8 2021 5:14 AM
‎Apr 8 2021 5:14 AM

Well, I thought that once I have the master account for managing multiple Orgs under MSP portal, I could just use the API key of the MSP to enable all the children Orgs.

 

Sure, I will do the old school way. Thanks 😊

0 Kudos
In response to Abn
John_on_API
Meraki Employee
Meraki Employee
‎Aug 23 2021 5:23 PM
‎Aug 23 2021 5:23 PM

You can now enable API on orgs via API, as long as you are an org admin on those organizations where you'd like to enable API. 

 

See: https://developer.cisco.com/meraki/api-v1/#!update-organization

 

It's not a valid security concern.

 

  • Org admins are org admins--they either have the keys to the kingdom, or they aren't org admins. You should only add folks you trust as org admins. 
  • There's nothing inherently more secure about disabling API access, in any case. API access is not a form of RBAC; API keys inherit the privileges of the associated user.
  • If someone is an org admin in your organization, then they could have just used the GUI to enable API access in your org, no API required, if they so wanted.
  • Finally, there are very real efficiency benefits of being able to manage this via API, which you can't realize via any other method, especially for enterprise and MSP deployments where API is the customer's chosen primary user interface.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.