Meraki

Community

Meraki Dashboard User Management Question

johnnyngena
Getting noticed
‎Apr 6 2023 10:17 AM
‎Apr 6 2023 10:17 AM

Meraki Dashboard User Management Question

I'm an MSP collaborating with another Meraki partner on an SD-WAN deployment.  In this case, both companies are expected to have full Admin-level access credentials, where Organizations can be created.  So, if an Organization is created just for the SD-WAN portion in the Dashboard, would we, the MSP, have the capability to provide Read-Only access to our partner or anyone else outside our company?  If not, why not?  If yes, if possible, would they be able to overwrite the Read-Only restriction and change it to the Admin full-acess regardless for the same SD-WAN Organization?

 

Thank you and appreciate the support.       

Labels:
0 Kudos
3 Replies 3
rhbirkelund
Kind of a big deal
Kind of a big deal
‎Apr 6 2023 11:31 AM
‎Apr 6 2023 11:31 AM

If a user is given Read-Only access on an Organizational level, they will be able to see all network, but not able to make any changes. They will also not be able to change their own rights to Read/Write.

A user with Read-Only access in Organization-level will be able to see the Organization tab, but not make any changes.

A user with None access, will not be able to see the Organization tab.

 

Rights are given to a user by browsing to Organization -> Configure -> Administrators.

 

If a user is igven Read-Only access on a Network Level, they will be able to see the configuration, but not alter anything.

If a user is given Read/Write access on a Network Level they will be able to alter the configuration on networks where there are allowed to. Again, they will not be able to alter their own rights.

 

In fact. you will not be able to remove your own account froom a Meraki Organization at all, as there must alway be atleast one account that has access to the Ordganization. If you want to be removed from an Organization, for different reasons, you'll have to ask someone else who is an administrator on the Organization to remove you.

 

Edit: Clarified access levels.

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
In response to rhbirkelund
johnnyngena
Getting noticed
‎Apr 6 2023 11:46 AM
‎Apr 6 2023 11:46 AM

Thank you rhbirkelund.  Another related question.  Since the Organization was created by our partner where they are giving full admin rights to a particular Organization, just like you described in your first paragraph of your response, will there be any Meraki support (i.e. TAC) constraints or restrictions for troubleshooting or RMA's?  Again, the question stems from the fact that my company was not the original creator of the Org. 

 

Thank you.

0 Kudos
In response to johnnyngena
rhbirkelund
Kind of a big deal
Kind of a big deal
‎Apr 6 2023 12:06 PM
‎Apr 6 2023 12:06 PM

Slight correction; At Organizational-level you can be granted three rights levels; None, Read Only and Read/Write.

None: you won't see the Organization Tab at all.

Read Only: You can see the Organization Tab, but not do changes.

Read/Write: Full access to the Organization.

 

Any administrator can open a ticket with Meraki Support. There are no constraints in terms of who can do what.

If your partner created the Organization with them having Org-level rights, and have given you Network level rights, you should still be able to open a ticket with Meraki Support.

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.