Meraki

Community

Meraci WiFi Password Distribution?

skobel
New here
‎Jan 2 2018 6:22 AM
‎Jan 2 2018 6:22 AM

Meraci WiFi Password Distribution?

We have a meraci wifi solution at a number of our companies offices and the wifi password is changed monthly for security reason's. Is there any way to configure meraci to auto-distribute/email the New Password to end users every month?

0 Kudos
3 Replies 3
AlexG
Getting noticed
‎Jan 2 2018 8:14 AM
‎Jan 2 2018 8:14 AM

@skobel

It's actually Meraki (with a K) versus Meraci. Robot Happy

 

While I don't condone sending passwords via plain-text in an email, I'll assume there are valid business reasons for doing it this way versus using RADIUS or another method. I do not believe there is anything available to do what you're asking via the dashboard alerts. My suggestion would be to utilize the API to update the password and send an email out to a distribution group within that same script. The specific API call can be found here. The parameter you're looking for is the 'psk' one.

 

Depending on the time of day the password is changed, you may want your script/job to send out the email prior to changing the password, otherwise your Service Desk may get swamped with calls of computers dropping off the network with no way to get back on.

0 Kudos
Uberseehandel
Kind of a big deal
‎Jan 2 2018 8:41 AM
‎Jan 2 2018 8:41 AM

@skobel wrote:

We have a meraci wifi solution at a number of our companies offices and the wifi password is changed monthly for security reason's. Is there any way to configure meraci to auto-distribute/email the New Password to end users every month?

This practice is now deprecated as it creates more problems than it solves. Your system should be adjusted so that passwords no longer need to be continuously changed. Of course, the post-it notes supplier will notice a reduction in business.

Robin St.Clair | Principal, Caithness Analytics | @uberseehandel
0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jan 2 2018 11:18 AM
‎Jan 2 2018 11:18 AM

I would recommend to changing over to using WPA-2 Enterprise mode, where every user gets their own password.

 

You can link it into Active Directory, so their AD credentials are used.  Note there is quite a bit of work and if you have never done it before it might be a bit challenging.

https://documentation.meraki.com/MR/Encryption_and_Authentication/Configuring_RADIUS_Authentication_...

 

If you have a Google Apps account you can also authenticate against that:

https://documentation.meraki.com/MR/Encryption_and_Authentication/Configuring_WPA2-Enterprise_with_G...

 

Perhaps the easiest option is to enable WPA2-Enteprise mode, and use local Meraki accounts for authentication.

https://documentation.meraki.com/MR/Encryption_and_Authentication/Meraki_Cloud_Hosted_Authentication

 

 

Lastly, if you really want to use a PSK, consider getting Systems Manager.  This allows you to use the WiFi settings, including the password, to machines without having to contact everyone.  Of course, they do need to be able to connect to the Internet once to get their profile update after you change the password.

https://documentation.meraki.com/SM/Profiles_and_Settings/Configuration_Settings#WiFi

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.