Not really the point though. If Meraki installs a config during onboarding it should (subject to reasonable exceptions) remove it during offboarding.

I'm not in a hurry on this one yet. I made this as a post vs a support case mainly to create awareness and I figured it might get more visibility/treated as a bug rather than the support approach (which I've noted is slower than I've been used to with Meraki in previous years).

Plus by sharing broadly, maybe people will try to reproduce it to see if they see the same thing.

I'm still working out my process for deployment of new 9200L switches so I have the luxury of time to test the new cloud-native hybrid mode to see if it will work for us (and ultimately save me time later/post-deployment).

I'm still in rapid testing mode and in hindsight I may have exaggerated just how much luxury I have with regard to timeline.

I will skip over the case for now but my original post should give anyone in Meraki the ability to try and reproduce the problem. It's as simple as onboard a switch, offboard a switch, then observe the config post-offboard.

This will probably not be the productive/utilitarian response you need.

Purely 9200L units for us. I think all I can say with regard to the Hybrid mode is that it is incredibly disappointing. IMO Cisco/Meraki engineering didn't actually test this new management model before rolling it out and deciding to deprecate the old method.

While I like the change of not needing a separate onboarding application, the problem I have is that the new onboarding process is *really* bad for switch stacks. Not to mention that if you need to replace a stack member (or expand/shrink a stack for that matter) it's not clear how you are meant to do that as the administrator with hybrid mode. With the cloud monitoring model, I had tested this and found that you simply remove the old switch, put in the new one, and .... Merkai catches up automatically. No additional action required.

From what Meraki support has told me, you need to basically do onboarding of each individual stack member to Meraki which to me sounds insane.

Snarky and unsolicited response: If you have to ask Meraki if something was fixed, it never was, and they don't have an intention to fix it.

I have several outstanding issues with Meraki. They appear to have zero incentive to actually fix product/service issues.

I am getting the vibe from Meraki that they don't want anything to do with the legacy Cloud Monitoring service anymore. I've raised a couple of support cases, and the general response is "Yep, legacy cloud monitoring is broken. We are turning it off the 31st of March, please upgrade to Cloud Management" 

Anyway, I fixed it myself by putting together a little command script that I copy and paste, and it manually goes through and cleans up all the left-over Meraki configuration. 

Funny thing is, I actually thought the configuration that was left behind was intentionally left behind haha. I never thought it was an issue until a saw this thread. 

Hi @bradly and @FCU_JE 

Hey @Tony-Sydney-AU

I must be the luckiest person in the world! It's happened to all 130 Catalyst switches I've migrated so far 😂 I should probably get some Lotto tickets for tomorrow night 😁

Yeah, the EEM script has failed to remove the VTY lines and AAA configuration every single time, requiring me to run through it with my mini script. It hasn't completed successfully on every C9300 and C9500 switch I've migrated so far. That's why I started thinking it was intentional. 

Nah, I am not going to raise a case for this. It's no impact, and we have a quick and easy workaround for it like you said. So, we are just moving forwards, getting off legacy Cloud Monitoring and on to Cloud Management and moving on. 

And completely understand the Meraki team only has finite resources and has to prioritise their workload, and with Cloud Monitoring going away in about two months, I understand it is not at the top of their list to troubleshoot weird issues. Especially issues that aren't disrupting services or causing outages. 

I just wanted to check and see if there was a solution (now that I know it's an issue), and maybe it was an easy solution, or I was doing something wrong. 

Thank you @Tony-Sydney-AU @FCU_JE for your input 😊

Oh my God, @bradly!!! 😮 Really??

Now you got me curious about it. What was their IOS XE version? Were they all running the same version?

They are all running IOS XE 17.9.5. They were onboarded into Meraki Monitoring around May 2024 using the legacy monitoring onboarding process. They were onboarded at version 17.9.5. 

Can I send you a sanitised copy of our configuration? If you're interested of course. 

Yes, please! I'll try to find some pattern.

Trying to reply to a lot of the back and forth here (but succinctly, so details won't be accurate):

• "From a customer perspective, it might feel like Support doesn't want to fix it. But I assure you it's absolutely not the case."
  • I like to assume goodwill too, but I found this issue Q1 or Q2 last year and I've had no updates on it.
• "My understanding is this off-boarding issue has been an edge case that only happened like one in a million times and it's very hard to reproduce"
  • Absolutely not the case for me. All my memories are of course faint now but this was *VERY* consistent in my testing.
• "What causes this script to fail still unclear."
  • But what is clear is that the Meraki R&D/devs didn't actually test it. Otherwise they would've caught it. It's embarrassing.
• "they are a limited resource and there are other issues to investigate"
  • Agreed, but if you want to (continue to) sell the service/product (in the interest of retaining Meraki's place in the market and as a result, ensure your own self-preservation), it's got to be stable.
• "They know the limitation above so actually they are saving your time"
  • Except (last I checked) these limitations aren't even documented in the Meraki docs.
• "Now you got me curious about it. What was their IOS XE version? Were they all running the same version?"
  • Not who you asked, but I was testing on a few different versions at the time of 17.12 and 17.15 and it was all consistently not removing the configs. Again, no one is testing this (chose your expletive).
• I don't have 130 switches like the other commentor. Order of magnitude smaller.

All these issues with the Meraki ... whatever you're calling it ... monitoring for Catalyst while not large individually are adding up and make me MUCH less eager to recommend my managers to consider Meraki in the future.

The only things that really separate networking vendors these days are security reputation, support quality, the management plane, and cost. Meraki (Cisco) is not leaps and bounds ahead of the pack on any of these metrics.

Thank you, @FCU_JE ! Can you please send me your support case number over a private message?

I'll have a look at your case.

And I need to quote you on this:

• "Agreed, but if you want to (continue to) sell the service/product (in the interest of retaining Meraki's place in the market and as a result, ensure your own self-preservation), it's got to be stable."

100% agree with you. I believe our community is a good space not just to vent our frustrations, but also to do bring your feedback to internal teams and work on it.

That's why I ask the support ticket number.

Let me take a look and I'll update you back. 

In hindsight I think I misspoke/was mistaken. I don't think I ever made a support ticket for *this* issue. I think at the time I created this community post I was so fed up with the (lack of) support I decided to give the community post route a try instead.